Summary Vulnerability: Exposed IOCTL with Insufficient Access Control (CWE-782) in FortiClient Windows Risk: May allow an authenticated local user to execute unauthorized code via driver Requirements: Bypass Windows memory protections (Heap integrity and HSP); valid and running VPN IPSec connection required Impacted Software & Fixes Security Details CVSS Severity Rating: 7.1 (High) Impact: Potentially allows execution of unauthorized code or commands Component: SSL-VPN Reporting Credits Vulnerability reported by Alex of HackerHood Research Group Published Information Initial Publication Date: November 18, 2025