Information Exposure Vulnerability in Fortinet FortiClient for Windows
CVE-2025-24473
4.8MEDIUM
What is CVE-2025-24473?
Fortinet FortiClient for Windows versions 7.2.0 through 7.2.1 are susceptible to a vulnerability that exposes sensitive system information to unauthorized users. This security flaw occurs when Windows is configured to accept incoming connections on port 8053, which is not a default setting. Attackers exploiting this vulnerability may gain access to critical application information through a hosted webpage, potentially leading to further attacks or data breaches.
Affected Version(s)
FortiClientWindows 7.2.0 <= 7.2.1