Unrated severityNVD Advisory· Published Oct 14, 2025· Updated Feb 26, 2026

CVE-2025-46774

Description

An Improper Verification of Cryptographic Signature vulnerability [CWE-347] in FortiClient MacOS installer version 7.4.2 and below, version 7.2.9 and below, 7.0 all versions may allow a local user to escalate their privileges via FortiClient related executables.

Affected products

Fortinet/FortiClientMacv5
cpe:2.3:a:fortinet:forticlientmac:7.4.2:*:*:*:*:*:*:*
Range: 7.4.0
Fortinet/Forticlientllm-fuzzy
Range: <=7.4.2, <=7.2.9, 7.0 all versions

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

fortiguard.fortinet.com/psirt/FG-IR-25-126mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000