Volerion logoVolerion
Volerion logoVolerion

Fortinet FortiClient Heap-Based Buffer Overflow Vulnerability via fortips Driver

Vulnerability

A heap-based buffer overflow vulnerability has been identified in Fortinet FortiClient for Windows, specifically in versions 7.4.0 through 7.4.3 and 7.2.0 through 7.2.8. This vulnerability may allow an authenticated local IPSec user to execute arbitrary code or commands by exploiting the 'fortips_74.sys' driver. The attacker would need to bypass Windows heap integrity protections to successfully execute the attack.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of code or commands on the affected system.

Remediation

Users can upgrade to Fortinet FortiClient Windows version 7.4.4 or above to address this vulnerability. For those on FortiClient Windows 7.2, upgrading to version 7.2.9 or above is recommended.

Added: Nov 18, 2025, 5:35 PM
Updated: Nov 18, 2025, 5:35 PM

Vulnerability Rating

Custom Algorithm
spread
6.6
impact
10.0
exploitability
2.7
remediation
7.7
relevance
1.1
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.