In November Fortinet has released two new PSIRT advisories (CVSS 7.1) that are impacting FortiClient v7.2.0-7.2.9 and v7.4.0-7.4.3. These issues have been fixed in FortiClient v7.2.10 and v7.4.4
For more information please refer to https://www.fortiguard.com/psirt/FG-IR-25-112 and https://www.fortiguard.com/psirt/FG-IR-25-125.
Shortly before, Fortinet announced that there would be no updates for the free VPN-only FortiClient v7.4.3, as no new features were being developed in 7.4.4 and later 7.4.5.”
Now Fortinet has fixed the mentioned (and other) vulnerabilities for the free VPN-only FortiClient v7.4.3, too – but there is no new patch, just a new build number for the existing patches:
MacOS: free VPN-only FortiClient 7.4.3 fixed version: 7.4.3.6667
Windows: free VPN-only FortiClient 7.4.3 fixed version: 7.4.3.1.8758
That means the FortiClient 7.4.3 has to be reinstalled if you are running an older build number as in this example:
If you are running an older version or build number, please download and reinstall the new 7.4.3 version!
