Vulnerabilities > Fortinet > Forticlient > 7.2.1

DATE CVE VULNERABILITY TITLE RISK
2023-11-14 CVE-2023-33304 Use of Hard-coded Credentials vulnerability in Fortinet Forticlient
A use of hard-coded credentials vulnerability in Fortinet FortiClient Windows 7.0.0 - 7.0.9 and 7.2.0 - 7.2.1 allows an attacker to bypass system protections via the use of static credentials.
local
low complexity
fortinet CWE-798
5.5
5.5
2023-11-14 CVE-2023-41840 Untrusted Search Path vulnerability in Fortinet Forticlient 7.0.9/7.2.0/7.2.1
A untrusted search path vulnerability in Fortinet FortiClientWindows 7.0.9 allows an attacker to perform a DLL Hijack attack via a malicious OpenSSL engine library in the search path.
local
low complexity
fortinet CWE-426
7.8
7.8
2023-10-10 CVE-2023-37939 Unspecified vulnerability in Fortinet Forticlient
An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiClient for Windows 7.2.0, 7.0 all versions, 6.4 all versions, 6.2 all versions, Linux 7.2.0, 7.0 all versions, 6.4 all versions, 6.2 all versions and Mac 7.2.0 through 7.2.1, 7.0 all versions, 6.4 all versions, 6.2 all versions, may allow a local authenticated attacker with no Administrative privileges to retrieve the list of files or folders excluded from malware scanning.
local
low complexity
fortinet
3.3
3.3