CVE-2025-57740
- EPSS 0.1%
- Veröffentlicht 14.10.2025 15:22:54
- Zuletzt bearbeitet 15.10.2025 17:22:47
An Heap-based Buffer Overflow vulnerability [CWE-122] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.0 all versions, 6.4 all versions; FortiPAM version 1.5.0, version 1.4.2 and below, 1.3 all versions, 1.2 al...
CVE-2025-47890
- EPSS 0.03%
- Veröffentlicht 14.10.2025 15:22:50
- Zuletzt bearbeitet 14.01.2026 10:16:04
An URL Redirection to Untrusted Site vulnerabilities [CWE-601] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiProxy 7.6.0 through ...
CVE-2025-58325
- EPSS 0.02%
- Veröffentlicht 14.10.2025 15:22:39
- Zuletzt bearbeitet 14.10.2025 20:22:50
An Incorrect Provision of Specified Functionality vulnerability [CWE-684] in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2.5 through 7.2.10, 7.0.0 through 7.0.15, 6.4 all versions may allow a local authenticated attacker to execute system commands via craf...
CVE-2025-58903
- EPSS 0.06%
- Veröffentlicht 14.10.2025 15:22:34
- Zuletzt bearbeitet 14.10.2025 20:22:21
An Unchecked Return Value vulnerability [CWE-252] in Fortinet FortiOS version 7.6.0 through 7.6.3 and before 7.4.8 API allows an authenticated user to cause a Null Pointer Dereference, crashing the http daemon via a specialy crafted request.
CVE-2025-22862
- EPSS 0.02%
- Veröffentlicht 02.10.2025 13:15:31
- Zuletzt bearbeitet 15.10.2025 17:13:28
An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] in FortiOS 7.4.0 through 7.4.7, 7.2.0 through 7.2.11, 7.0.6 and above; and FortiProxy 7.6.0 through 7.6.2, 7.4.0 through 7.4.8, 7.2 all versions, 7.0.5 and above may ...
CVE-2024-26009
- EPSS 0.14%
- Veröffentlicht 12.08.2025 18:59:47
- Zuletzt bearbeitet 14.08.2025 01:13:14
An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS version 6.4.0 through 6.4.15 and before 6.2.16, FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.8 and before 7.0.15 & FortiPAM before ve...
CVE-2025-25248
- EPSS 0.05%
- Veröffentlicht 12.08.2025 18:59:39
- Zuletzt bearbeitet 14.08.2025 01:21:03
An Integer Overflow or Wraparound vulnerability [CWE-190] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.2 all versions, 6.4 all versions, FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all ...
CVE-2023-45584
- EPSS 0.14%
- Veröffentlicht 12.08.2025 18:59:35
- Zuletzt bearbeitet 14.01.2026 10:16:01
A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.1, ...
CVE-2025-53744
- EPSS 0.15%
- Veröffentlicht 12.08.2025 18:59:22
- Zuletzt bearbeitet 15.08.2025 12:27:51
An incorrect privilege assignment vulnerability [CWE-266] in FortiOS Security Fabric version 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all versions, 7.0 all versions, 6.4 all versions, may allow a remote authenticated attacker with high privilege...
CVE-2025-24477
- EPSS 0.02%
- Veröffentlicht 15.07.2025 08:14:41
- Zuletzt bearbeitet 03.11.2025 09:15:45
A heap-based buffer overflow in Fortinet FortiOS 7.6.0 through 7.6.2, FortiOS 7.4.0 through 7.4.7, FortiOS 7.2.4 through 7.2.12 allows an attacker to escalate its privileges via a specially crafted CLI command