Vulnerability Details CVE-2024-36507
A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0 allows an attacker to run arbitrary code via DLL hijacking and social engineering.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 19.9%
CVSS Severity
CVSS v3 Score 7.3
Products affected by CVE-2024-36507
-
cpe:2.3:a:fortinet:forticlient:7.0.0
-
cpe:2.3:a:fortinet:forticlient:7.0.1
-
cpe:2.3:a:fortinet:forticlient:7.0.10
-
cpe:2.3:a:fortinet:forticlient:7.0.11
-
cpe:2.3:a:fortinet:forticlient:7.0.12
-
cpe:2.3:a:fortinet:forticlient:7.0.2
-
cpe:2.3:a:fortinet:forticlient:7.0.3
-
cpe:2.3:a:fortinet:forticlient:7.0.4
-
cpe:2.3:a:fortinet:forticlient:7.0.5
-
cpe:2.3:a:fortinet:forticlient:7.0.6
-
cpe:2.3:a:fortinet:forticlient:7.0.7
-
cpe:2.3:a:fortinet:forticlient:7.0.8
-
cpe:2.3:a:fortinet:forticlient:7.0.9
-
cpe:2.3:a:fortinet:forticlient:7.2.0
-
cpe:2.3:a:fortinet:forticlient:7.2.1
-
cpe:2.3:a:fortinet:forticlient:7.2.2
-
cpe:2.3:a:fortinet:forticlient:7.2.3
-
cpe:2.3:a:fortinet:forticlient:7.2.4
-
cpe:2.3:a:fortinet:forticlient:7.4.0