2767 matches found
CVE-2025-47890
An URL Redirection to Untrusted Site vulnerabilities CWE-601 vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4 all versions, FortiProxy 7....
CVE-2025-47890
CVE-2025-47890 describes an open redirect (URL Redirection to Untrusted Site, CWE-601) in Fortinet FortiOS and FortiProxy. Affected products include FortiOS versions 6.4, 7.0, 7.2, 7.4, 7.6 and FortiProxy 7.0–7.6.3, plus FortiSASE 25.2.a. The vulnerability can be exploited by unauthenticated, cra...
CVE-2025-47890
An URL Redirection to Untrusted Site vulnerabilities CWE-601 vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4 all versions, FortiProxy 7....
CVE-2025-47890
An URL Redirection to Untrusted Site vulnerabilities CWE-601 vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4 all versions, FortiProxy 7....
CVE-2025-58325
An Incorrect Provision of Specified Functionality vulnerability CWE-684 in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2.5 through 7.2.10, 7.0.0 through 7.0.15, 6.4 all versions may allow a local authenticated attacker to execute system commands via crafted CLI commands...
CVE-2025-58325
CVE-2025-58325 describes an issue in FortiOS where a local, authenticated attacker can execute system commands via crafted CLI commands. Affected firmware includes FortiOS 7.6.0 and 7.4.0–7.4.5, 7.2.5–7.2.10, 7.0.0–7.0.15, and all 6.4 versions. The vulnerability is categorized as CWE-684 (Incorre...
CVE-2025-58325
An Incorrect Provision of Specified Functionality vulnerability CWE-684 in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2.5 through 7.2.10, 7.0.0 through 7.0.15, 6.4 all versions may allow a local authenticated attacker to execute system commands via crafted CLI commands...
CVE-2025-58903
An Unchecked Return Value vulnerability CWE-252 in Fortinet FortiOS version 7.6.0 through 7.6.3 and before 7.4.8 API allows an authenticated user to cause a Null Pointer Dereference, crashing the http daemon via a specialy crafted request...
CVE-2025-58903
CVE-2025-58903 affects Fortinet FortiOS FortiOS API in 7.6.0–7.6.3 and earlier than 7.4.8. It is an Unchecked Return Value (CWE-252) vulnerability that, when exploited by an authenticated user via a crafted request, can trigger a Null Pointer Dereference and crash the HTTP daemon, enabling a deni...
CVE-2025-58903
An Unchecked Return Value vulnerability CWE-252 in Fortinet FortiOS version 7.6.0 through 7.6.3 and before 7.4.8 API allows an authenticated user to cause a Null Pointer Dereference, crashing the http daemon via a specialy crafted request...
Fortinet FortiOS和Fortinet FortiProxy 安全特征问题漏洞
Fortinet FortiOS and Fortinet FortiProxy are both products of Fortinet, Inc. Fortinet FortiOS is a dedicated security operating system on the FortiGate network security platform. The system provides users with a variety of security features such as firewall, antivirus, IPSec/SSLVPN, Web content...
Fortinet多款产品 安全漏洞
Fortinet FortiOS and others are products of Fortinet, Inc.Fortinet FortiOS is a dedicated security operating system on the FortiGate network security platform.Fortinet FortiPAM is a platform for privilege access control.Fortinet FortiSRA is Fortinet FortiSRA is a secure remote access software. A...
Fortinet Fortigate Multiple Unchecked Return Value leading to Null Pointer Dereference (FG-IR-25-653)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-25-653 advisory. - An Unchecked Return Value vulnerability CWE-252 in Fortinet FortiOS version 7.6.0 through 7.6.3 and before 7.4.8 API allows...
Fortinet Fortigate Improper autorization over static files (FG-IR-25-684)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-25-684 advisory. - An improper authorization vulnerability CWE-285 in Fortinet FortiOS version 7.4.0 through 7.4.1 and before 7.2.8 & Fortinet...
Fortinet FortiOS 安全漏洞
Fortinet FortiOS is a set of security operating systems dedicated to the FortiGate network security platform from the American company Fiat Fortinet. The system provides users with a variety of security features such as firewall, antivirus, IPSec/SSLVPN, Web content filtering and anti-spam. A...
Fortinet多款产品 输入验证错误漏洞
Fortinet FortiOS and others are products of Fortinet, Inc.Fortinet FortiOS is a dedicated security operating system on the FortiGate network security platform.Fortinet FortiProxy is a secure network proxy that protects employees from network attacks by combining a variety of detection technologie...
PT-2025-41965
Name of the Vulnerable Software and Affected Versions FortiOS versions 6.4 all versions FortiOS versions 7.0.0 through 7.0.15 FortiOS versions 7.2.5 through 7.2.10 FortiOS versions 7.4.0 through 7.4.5 FortiOS version 7.6.0 Description An issue exists in FortiOS where a local authenticated attacke...
PT-2025-41952
Name of the Vulnerable Software and Affected Versions FortiOS versions 6.4 through 7.0, 7.2, 7.4, and 7.6.0 through 7.6.3 Description An issue exists where sensitive two-factor authentication 2FA related information may be exposed. An attacker with read-only privileges could potentially retrieve...
PT-2025-41951
An Improper Neutralization of Input During Web Page Generation vulnerability CWE-79 in FortiOS 7.6.0 through 7.6.3, 7.4.0 through 7.4.7, 7.2 all versions, 7.0 all versions, 6.4 all versions; FortiProxy 7.6.0 through 7.6.3, 7.4.0 through 7.4.9, 7.2 all versions, 7.0 all versions; FortiSASE 25.3.a...
Fortinet多款产品 安全漏洞
Fortinet FortiOS and others are products of Fortinet, Inc.Fortinet FortiOS is a dedicated security operating system on the FortiGate network security platform.Fortinet FortiManager is a centralized network security management platform.Fortinet FortiSwitchManager is a network switch management too...