How severe is CVE-2025-25251?

CVE-2025-25251 has a CVSS v3 score of 7.8 (HIGH).

CVE-2025-25251

Name: forticlient
Author: fortinet

7.8HIGH

An Incorrect Authorization vulnerability [CWE-863] in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14 may allow a local attacker to escalate privileges via crafted XPC m

Опубликовано: 5/28/2025Обновлено: 6/4/2025

Описание

An Incorrect Authorization vulnerability [CWE-863] in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14 may allow a local attacker to escalate privileges via crafted XPC messages.

ИИ-АнализНа базе ИИ

Затронутые продукты

fortinetforticlient

Ссылки

https://fortiguard.fortinet.com/psirt/FG-IR-25-016
Vendor Advisory