CVE-2026-22828

A heap-based buffer overflow vulnerability affects Fortinet FortiAnalyzer Cloud 7.6.2–7.6.4 and FortiManager Cloud 7.6.2–7.6.4, enabling remote unauthenticated code execution via crafted requests. Exploitation would be effortful due to ASLR and network segmentation. CVSS 3.1 v3 base score 8.1 (HI...

CVE-2025-48418

The CVE-2025-48418 entry describes a hidden functionality privilege-escalation vulnerability affecting Fortinet FortiAnalyzer and FortiManager (including cloud variants) across multiple versions (FortiAnalyzer: 6.4 all, 7.0.x–7.6.3; FortiAnalyzer Cloud: 6.4 all, 7.0.1–7.6.3; FortiManager: 6.4 all...