Fortinet FortiClient Windows Debug Vulnerability Allowing VPN Password Retrieval

A debug vulnerability has been identified in Fortinet FortiClient for Windows, specifically in versions 7.4.0 to 7.4.3, 7.2.0 to 7.2.10, and all versions of 7.0. This vulnerability may enable a local attacker to execute the application in a step-by-step manner, potentially leading to the extraction of saved VPN user passwords.

Impact

Exploitation of this vulnerability could result in unauthorized access to saved VPN user passwords, allowing an attacker to impersonate the user or gain access to sensitive information transmitted over the VPN.

Remediation

Users of Fortinet FortiClient for Windows should upgrade to version 7.4.4 or above if they are currently using FortiClient Windows 7.4.0 through 7.4.3. For those on FortiClient Windows 7.2.0 through 7.2.10, the upgrade to version 7.2.11 or above is recommended. Users on FortiClient Windows 7.0 should migrate to a fixed release.