Security Advisory

CVE-2025-57716

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-14 15:23:10

Last updated 2026-02-26 17:47:32

Assigner fortinet

State PUBLISHED

Description

An Uncontrolled Search Path Element vulnerability [CWE-427] in FortiClient Windows 7.4.0 through 7.4.3, 7.2.0 through 7.2.11, 7.0 all versions may allow a local low privileged user to perform a DLL hijacking attack via placing a malicious DLL to the FortiClient Online Installer installation folder.

← Browse all CVEs View on cve.org ↗