CVE-2024-36507: 
FortiClient vulnerability analysis and mitigation

An untrusted search path vulnerability was discovered in Fortinet FortiClientWindows, affecting versions 7.4.0, versions 7.2.4 through 7.2.0, and versions 7.0.12 through 7.0.0. The vulnerability was initially published on November 12, 2024, and was assigned CVE-2024-36507. This security flaw allows attackers to potentially execute arbitrary code through DLL hijacking combined with social engineering techniques (Fortinet PSIRT, FortiGuard Labs).

The vulnerability is classified as an untrusted search path vulnerability (CWE-426) with a CVSSv3 score of 6.7, indicating a medium severity level. The flaw specifically affects the Windows version of FortiClient and involves DLL hijacking, which could lead to unauthorized code execution (Fortinet PSIRT).

If successfully exploited, this vulnerability allows attackers to execute unauthorized code or commands on affected systems, potentially compromising the security of the FortiClient Windows installation (Fortinet PSIRT).

Fortinet has released patches to address this vulnerability. Users are advised to upgrade to FortiClientWindows version 7.4.1 or above for the 7.4 branch, version 7.2.5 or above for the 7.2 branch, and version 7.0.13 or above for the 7.0 branch. As a workaround, users should ensure that all download executables are obtained directly from Fortinet (Fortinet PSIRT).

The vulnerability was responsibly disclosed by Aleksandar Marceta-Pavlovic from WKO Inhouse GmbH of the Austrian Economic Chambers (Fortinet PSIRT).