The host is installed with Fortinet FortiClient 6.0.0 through 6.4.6 or 7.0.0 through 7.0.1 and is prone to an improper certificate validation vulnerability. A flaw is present in the application, which fails to handle the issues in unspecified vectors. Successful exploitation could allow an unauthenticated and network adjacent attacker to perform a man-in-the-middle attack between the EMS and the FCT via the telemetry protocol.