High severity8.8NVD Advisory· Published Dec 15, 2017· Updated May 13, 2026

CVE-2017-14184

Description

An Information Disclosure vulnerability in Fortinet FortiClient for Windows 5.6.0 and below versions, FortiClient for Mac OSX 5.6.0 and below versions and FortiClient SSLVPN Client for Linux 4.4.2334 and below versions allows regular users to see each other's VPN authentication credentials due to improperly secured storage locations.

Affected products

Fortinet, Inc./FortiClient for Windowsv5
Range: 5.6.0 and below
Fortinet, Inc./FortiClient for Mac OSXv5
Range: 5.6.0 and below
Fortinet, Inc./FortiClient SSLVPN Client for Linuxv5
Range: 4.4.2334 and below

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/102123nvdThird Party AdvisoryVDB Entry
fortiguard.com/advisory/FG-IR-17-214nvdMitigationVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000