2 matches found
CVE-2026-40688
Fortinet FortiWeb is affected by CVE-2026-40688: an out-of-bounds write vulnerability in FortiWeb versions 8.0.0–8.0.3, 7.6.0–7.6.6, and 7.4.0–7.4.11 that may allow an attacker to execute unauthorized code or commands via an unspecified attack vector. The CVSS 3.1 data posted indicates network ac...
CVE-2025-59719
An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9 may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message...