CNNVD-202602-1624 Information
CNNVD ID
CNNVD-202602-1624
Related CVE
- CNNVD Published: 2026-02-10
Description (Chinese)
Fortinet FortiClientWindows是美国飞塔(Fortinet)公司的一套基于Windows平台的移动终端安全解决方案。该方案与FortiGate防火墙设备连接时可提供IPsec和SSL加密、广域网优化、终端合规和双因子认证等功能。 Fortinet FortiClientWindows 7.4.0版本至7.4.4版本、7.2.0版本至7.2.12版本和7.0所有版本存在后置链接漏洞,该漏洞源于文件访问前链接解析不当,可能导致通过特制命名管道消息执行任意文件写入。
Description (English)
Fortinet Forest Windows is a mobile terminal security solution based on the Windows platform of Fortinet. The program, when connected to FortiGate firewall equipment, provides the functionality of IPsec and SSL encryption, wide area network optimization, terminal compliance and dual-factor authentication. Fortinet FortiumWindows version 7.4.0 to version 7.4.4, version 7.2.0 to version 7.2.12 and all version 7.0 have a post-link loophole, which arises from the inappropriate analysis of the link prior to access to the document and may lead to the execution of any document for writing by means of ad hoc naming conduit messages.
Vulnerability Type
后置链接
Affected Vendor
飞塔
Published
2026-02-10
Last Modified
2026-02-24
References
https://fortiguard.fortinet.com/psirt/FG-IR-25-661 https://access.redhat.com/security/cve/cve-2025-62676
Patch
https://fortiguard.fortinet.com/psirt/FG-IR-25-661
Share on: