Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-50564

A use of hard-coded cryptographic key in Fortinet FortiClientWindows version 7.4.0, 7.2.x all versions, 7.0.x all versions, and 6.4.x all versions may allow a low-privileged user to decrypt interprocess communication via monitoring named piped.

Published

2025-01-14T14:15:33.490

Last Modified

2025-06-11T14:55:09.987

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 3.3 (LOW)

Weaknesses

Type: Secondary
CWE-321
Type: Primary
CWE-798

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	fortinet	forticlient	< 7.2.9	Yes
Application	fortinet	forticlient	7.4.0	Yes

References

https://fortiguard.fortinet.com/psirt/FG-IR-24-216 Vendor Advisory ([email protected])