CVE-2025-31365

Name of the Vulnerable Software and Affected Versions FortiClientMac versions 7.2.1 through 7.2.8 FortiClientMac versions 7.4.0 through 7.4.3

Description An issue exists in FortiClientMac that could allow an unauthenticated attacker to execute arbitrary code on a user's system. This is due to an improper control of code generation. The issue can be triggered by a user visiting a malicious website. The vulnerability is well-suited for phishing campaigns targeting macOS systems.

Recommendations Update FortiClientMac to a version later than 7.2.8. Update FortiClientMac to a version later than 7.4.3.