• Advisory Details Fortinet FortiClient VPN FCConfig Utility Link Following Local Privilege Escalation Vulnerability ZDI-26-115ZDI-CAN-25710 This vulnerability allows local attackers to escalate privileges on affected installations of Fortinet FortiClient VPN. • An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. • The specific flaw exists within the FortiClient Configuration Daemon. • By creating a junction, an attacker can abuse the service to overwrite arbitrary files. • An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • 2025-05-29 - Vulnerability reported to vendor 2026-02-19 - Coordinated public release of advisory 2026-02-19 - Advisory Updated General Inquiries Find us on X Find us on Mastodon Media Inquiries Sensitive Email Communications Our Mission TrendAI TippingPoint IPS Process Researcher Rewards FAQS Privacy Published Advisories Upcoming Advisories RSS Feeds

Article Summaries:

  • CVE ID | CVE-2025-62676 | CVSS SCORE | 7.8, AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | AFFECTED VENDORS | Fortinet | AFFECTED PRODUCTS | FortiClient VPN | VULNERABILITY DETAILS | This vulnerability allows local attackers to escalate privileges on affected installations of Fortinet FortiClient VPN. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the FortiClient Configuration Daemon. By creating a junction, an attacker can abuse the service to overwrite arbitrary files. An attacker ca

Sources: