Primary

Context

Fortinet FortiClient Improper Signature Verification Vulnerability Allowing Privilege Escalation on MacOS

Vulnerability

Patched

A vulnerability allowing improper verification of cryptographic signatures has been identified in the FortiClient MacOS installer. This issue affects versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.9, and all versions of 7.0. The vulnerability may enable a local user to escalate privileges through FortiClient-related executables.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation.

Remediation

Users can upgrade to FortiClient MacOS version 7.4.4 or above, version 7.2.10 or above, or migrate to a fixed release for version 7.0.

Added: Oct 14, 2025, 4:27 PM

Updated: Oct 14, 2025, 11:07 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Fortinet FortiClient Improper Signature Verification Vulnerability Allowing Privilege Escalation on MacOS

Vulnerability

Impact

Remediation

Affected Products

Fortinet FortiClient

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating