CVE-2025-47761

CVE Database · CVE-2025-47761

CVE-2025-47761

· HIGHModified

CVSS v3.1

7.8

EPSS

0.14%

Published

Nov 18, 2025

Modified

Dec 16, 2025

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An Exposed IOCTL with Insufficient Access Control vulnerability [CWE-782] vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.3, FortiClientWindows 7.2.0 through 7.2.9 may allow an authenticated local user to execute unauthorized code via fortips driver. Success of the attack would require bypassing the Windows memory protections such as Heap integrity and HSP. In addition, it requires a valid and running VPN IPSec connection.

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Weaknesses (CWE)

CWE-782

Affected Products (2)

fortinet · forticlient (up to 7.2.10)vulnerable

fortinet · forticlient (up to 7.4.4)vulnerable

References (1)

https://fortiguard.fortinet.com/psirt/FG-IR-25-112

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs