Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for forticamera_firmware by fortinet

    CVE-2024-40588 (GCVE-0-2024-40588)

    Vulnerability from nvd – Published: 2025-08-12 18:59 – Updated: 2026-01-14 09:17
    VLAI
    Summary
    Multiple relative path traversal vulnerabilities [CWE-23] vulnerability in Fortinet FortiCamera 2.1 all versions, FortiCamera 2.0.0, FortiCamera 1.1 all versions, FortiCamera 1.0 all versions, FortiMail 7.6.0 through 7.6.1, FortiMail 7.4.0 through 7.4.3, FortiMail 7.2 all versions, FortiMail 7.0 all versions, FortiMail 6.4 all versions, FortiNDR 7.6.0 through 7.6.1, FortiNDR 7.4.0 through 7.4.6, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiRecorder 6.4 all versions, FortiVoice 7.0.0 through 7.0.3, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0 all versions may allow a privileged attacker to read files from the underlying filesystem via crafted CLI requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Improper access control
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiCamera Affected: 2.1.0 , ≤ 2.1.4 (semver)
    Affected: 2.0.0
    Affected: 1.1.0 , ≤ 1.1.5 (semver)
    Affected: 1.0.3 , ≤ 1.0.5 (semver)
        cpe:2.3:a:fortinet:forticamera:2.1.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.0.3:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiNDR Affected: 7.6.0 , ≤ 7.6.1 (semver)
    Affected: 7.4.0 , ≤ 7.4.6 (semver)
    Affected: 7.2.0 , ≤ 7.2.5 (semver)
    Affected: 7.1.0 , ≤ 7.1.1 (semver)
    Affected: 7.0.0 , ≤ 7.0.7 (semver)
        cpe:2.3:a:fortinet:fortindr:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiMail Affected: 7.6.0 , ≤ 7.6.1 (semver)
    Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.9 (semver)
    Affected: 7.0.0 , ≤ 7.0.9 (semver)
    Affected: 6.4.0 , ≤ 6.4.8 (semver)
        cpe:2.3:a:fortinet:fortimail:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiRecorder Affected: 7.2.0 , ≤ 7.2.1 (semver)
    Affected: 7.0.0 , ≤ 7.0.4 (semver)
    Affected: 6.4.0 , ≤ 6.4.6 (semver)
        cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiVoice Affected: 7.0.0 , ≤ 7.0.3 (semver)
    Affected: 6.4.0 , ≤ 6.4.9 (semver)
    Affected: 6.0.0 , ≤ 6.0.12 (semver)
        cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-40588",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-12T19:38:50.113803Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-08-12T19:39:38.831Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:forticamera:2.1.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.0.3:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiCamera",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "2.1.4",
                  "status": "affected",
                  "version": "2.1.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "lessThanOrEqual": "1.1.5",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.5",
                  "status": "affected",
                  "version": "1.0.3",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortindr:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiNDR",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.1",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.6",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.5",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.1.1",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortimail:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiMail",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.1",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.9",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.9",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.8",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiRecorder",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.1",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.4",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.6",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiVoice",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.3",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.9",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.0.12",
                  "status": "affected",
                  "version": "6.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple relative path traversal vulnerabilities [CWE-23] vulnerability in Fortinet FortiCamera 2.1 all versions, FortiCamera 2.0.0, FortiCamera 1.1 all versions, FortiCamera 1.0 all versions, FortiMail 7.6.0 through 7.6.1, FortiMail 7.4.0 through 7.4.3, FortiMail 7.2 all versions, FortiMail 7.0 all versions, FortiMail 6.4 all versions, FortiNDR 7.6.0 through 7.6.1, FortiNDR 7.4.0 through 7.4.6, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiRecorder 6.4 all versions, FortiVoice 7.0.0 through 7.0.3, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0 all versions may allow a privileged attacker to read files from the underlying filesystem via crafted CLI requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 4.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N/E:P/RL:X/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "Improper access control",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:17:11.543Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-309",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-309"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to upcoming  FortiCamera version 2.0.1 or above\nUpgrade to FortiNDR version 7.6.2 or above\nUpgrade to FortiNDR version 7.4.7 or above\nUpgrade to FortiMail version 7.6.2 or above\nUpgrade to FortiMail version 7.4.4 or above\nUpgrade to FortiRecorder version 7.2.2 or above\nUpgrade to FortiRecorder version 7.0.5 or above\nUpgrade to FortiFone version 3.0.24 or above\nUpgrade to FortiVoice version 7.2.0 or above\nUpgrade to FortiVoice version 7.0.5 or above\nUpgrade to FortiVoice version 6.4.10 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2024-40588",
        "datePublished": "2025-08-12T18:59:11.807Z",
        "dateReserved": "2024-07-05T11:55:50.010Z",
        "dateUpdated": "2026-01-14T09:17:11.543Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-32756 (GCVE-0-2025-32756)

    Vulnerability from nvd – Published: 2025-05-13 14:46 – Updated: 2026-02-26 18:28
    VLAI CISA KEVIntel
    Summary
    A stack-based buffer overflow vulnerability [CWE-121] vulnerability in Fortinet FortiCamera 2.1.0 through 2.1.3, FortiCamera 2.0 all versions, FortiCamera 1.1 all versions, FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0 through 7.4.4, FortiMail 7.2.0 through 7.2.7, FortiMail 7.0.0 through 7.0.8, FortiNDR 7.6.0, FortiNDR 7.4.0 through 7.4.7, FortiNDR 7.2.0 through 7.2.4, FortiNDR 7.0.0 through 7.0.6, FortiRecorder 7.2.0 through 7.2.3, FortiRecorder 7.0.0 through 7.0.5, FortiRecorder 6.4.0 through 6.4.5, FortiVoice 7.2.0, FortiVoice 7.0.0 through 7.0.6, FortiVoice 6.4.0 through 6.4.10 allows a remote unauthenticated attacker to execute arbitrary code or commands via sending HTTP requests with specially crafted hash cookie.
    SSVC
    Exploitation: active Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Execute unauthorized code or commands
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiNDR Affected: 7.6.0
    Affected: 7.4.0 , ≤ 7.4.7 (semver)
    Affected: 7.2.0 , ≤ 7.2.4 (semver)
    Affected: 7.1.0 , ≤ 7.1.1 (semver)
    Affected: 7.0.0 , ≤ 7.0.6 (semver)
    Affected: 1.5.0 , ≤ 1.5.3 (semver)
    Affected: 1.4.0
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0
        cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.1.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiCamera Affected: 2.1.0 , ≤ 2.1.3 (semver)
    Affected: 2.0.0
    Affected: 1.1.0 , ≤ 1.1.5 (semver)
        cpe:2.3:a:fortinet:forticamera:2.1.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiRecorder Affected: 7.2.0 , ≤ 7.2.3 (semver)
    Affected: 7.0.0 , ≤ 7.0.5 (semver)
    Affected: 6.4.0 , ≤ 6.4.5 (semver)
        cpe:2.3:a:fortinet:fortirecorder:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiVoice Affected: 7.2.0
    Affected: 7.0.0 , ≤ 7.0.6 (semver)
    Affected: 6.4.0 , ≤ 6.4.10 (semver)
        cpe:2.3:a:fortinet:fortivoice:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiMail Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.4 (semver)
    Affected: 7.2.0 , ≤ 7.2.7 (semver)
    Affected: 7.0.0 , ≤ 7.0.8 (semver)
        cpe:2.3:a:fortinet:fortimail:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-32756",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-15T04:01:18.017087Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2025-05-14",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-32756"
                  },
                  "type": "kev"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T18:28:36.454Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-32756"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2025-05-14T00:00:00.000Z",
                "value": "CVE-2025-32756 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.1.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiNDR",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.6.0"
                },
                {
                  "lessThanOrEqual": "7.4.7",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.4",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.1.1",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.6",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.5.3",
                  "status": "affected",
                  "version": "1.5.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.4.0"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "status": "affected",
                  "version": "1.1.0"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:forticamera:2.1.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiCamera",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "2.1.3",
                  "status": "affected",
                  "version": "2.1.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "lessThanOrEqual": "1.1.5",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortirecorder:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiRecorder",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.3",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.5",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.5",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortivoice:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiVoice",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.2.0"
                },
                {
                  "lessThanOrEqual": "7.0.6",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.10",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortimail:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiMail",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.4",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.7",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.8",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A stack-based buffer overflow vulnerability [CWE-121] vulnerability in Fortinet FortiCamera 2.1.0 through 2.1.3, FortiCamera 2.0 all versions, FortiCamera 1.1 all versions, FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0 through 7.4.4, FortiMail 7.2.0 through 7.2.7, FortiMail 7.0.0 through 7.0.8, FortiNDR 7.6.0, FortiNDR 7.4.0 through 7.4.7, FortiNDR 7.2.0 through 7.2.4, FortiNDR 7.0.0 through 7.0.6, FortiRecorder 7.2.0 through 7.2.3, FortiRecorder 7.0.0 through 7.0.5, FortiRecorder 6.4.0 through 6.4.5, FortiVoice 7.2.0, FortiVoice 7.0.0 through 7.0.6, FortiVoice 6.4.0 through 6.4.10 allows a remote unauthenticated attacker to execute arbitrary code or commands via sending HTTP requests with specially crafted hash cookie."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.6,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:X/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "Execute unauthorized code or commands",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-15T12:54:22.845Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-25-254",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-25-254"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiNDR version 7.6.1 or above\nUpgrade to FortiNDR version 7.4.8 or above\nUpgrade to FortiNDR version 7.2.5 or above\nUpgrade to FortiNDR version 7.0.7 or above\nUpgrade to FortiCamera version 2.1.4 or above\nUpgrade to FortiRecorder version 7.2.4 or above\nUpgrade to FortiRecorder version 7.0.6 or above\nUpgrade to FortiRecorder version 6.4.6 or above\nUpgrade to FortiVoice version 7.2.1 or above\nUpgrade to FortiVoice version 7.0.7 or above\nUpgrade to FortiVoice version 6.4.11 or above\nUpgrade to FortiMail version 7.6.3 or above\nUpgrade to FortiMail version 7.4.5 or above\nUpgrade to FortiMail version 7.2.8 or above\nUpgrade to FortiMail version 7.0.9 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-32756",
        "datePublished": "2025-05-13T14:46:44.208Z",
        "dateReserved": "2025-04-10T08:12:12.347Z",
        "dateUpdated": "2026-02-26T18:28:36.454Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-40588 (GCVE-0-2024-40588)

    Vulnerability from cvelistv5 – Published: 2025-08-12 18:59 – Updated: 2026-01-14 09:17
    VLAI
    Summary
    Multiple relative path traversal vulnerabilities [CWE-23] vulnerability in Fortinet FortiCamera 2.1 all versions, FortiCamera 2.0.0, FortiCamera 1.1 all versions, FortiCamera 1.0 all versions, FortiMail 7.6.0 through 7.6.1, FortiMail 7.4.0 through 7.4.3, FortiMail 7.2 all versions, FortiMail 7.0 all versions, FortiMail 6.4 all versions, FortiNDR 7.6.0 through 7.6.1, FortiNDR 7.4.0 through 7.4.6, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiRecorder 6.4 all versions, FortiVoice 7.0.0 through 7.0.3, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0 all versions may allow a privileged attacker to read files from the underlying filesystem via crafted CLI requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Improper access control
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiCamera Affected: 2.1.0 , ≤ 2.1.4 (semver)
    Affected: 2.0.0
    Affected: 1.1.0 , ≤ 1.1.5 (semver)
    Affected: 1.0.3 , ≤ 1.0.5 (semver)
        cpe:2.3:a:fortinet:forticamera:2.1.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.0.3:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiNDR Affected: 7.6.0 , ≤ 7.6.1 (semver)
    Affected: 7.4.0 , ≤ 7.4.6 (semver)
    Affected: 7.2.0 , ≤ 7.2.5 (semver)
    Affected: 7.1.0 , ≤ 7.1.1 (semver)
    Affected: 7.0.0 , ≤ 7.0.7 (semver)
        cpe:2.3:a:fortinet:fortindr:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiMail Affected: 7.6.0 , ≤ 7.6.1 (semver)
    Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.9 (semver)
    Affected: 7.0.0 , ≤ 7.0.9 (semver)
    Affected: 6.4.0 , ≤ 6.4.8 (semver)
        cpe:2.3:a:fortinet:fortimail:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiRecorder Affected: 7.2.0 , ≤ 7.2.1 (semver)
    Affected: 7.0.0 , ≤ 7.0.4 (semver)
    Affected: 6.4.0 , ≤ 6.4.6 (semver)
        cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiVoice Affected: 7.0.0 , ≤ 7.0.3 (semver)
    Affected: 6.4.0 , ≤ 6.4.9 (semver)
    Affected: 6.0.0 , ≤ 6.0.12 (semver)
        cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-40588",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-12T19:38:50.113803Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-08-12T19:39:38.831Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:forticamera:2.1.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.0.3:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiCamera",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "2.1.4",
                  "status": "affected",
                  "version": "2.1.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "lessThanOrEqual": "1.1.5",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.5",
                  "status": "affected",
                  "version": "1.0.3",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortindr:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiNDR",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.1",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.6",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.5",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.1.1",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortimail:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiMail",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.1",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.9",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.9",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.8",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiRecorder",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.1",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.4",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.6",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiVoice",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.3",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.9",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.0.12",
                  "status": "affected",
                  "version": "6.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple relative path traversal vulnerabilities [CWE-23] vulnerability in Fortinet FortiCamera 2.1 all versions, FortiCamera 2.0.0, FortiCamera 1.1 all versions, FortiCamera 1.0 all versions, FortiMail 7.6.0 through 7.6.1, FortiMail 7.4.0 through 7.4.3, FortiMail 7.2 all versions, FortiMail 7.0 all versions, FortiMail 6.4 all versions, FortiNDR 7.6.0 through 7.6.1, FortiNDR 7.4.0 through 7.4.6, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiRecorder 6.4 all versions, FortiVoice 7.0.0 through 7.0.3, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0 all versions may allow a privileged attacker to read files from the underlying filesystem via crafted CLI requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 4.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N/E:P/RL:X/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "Improper access control",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:17:11.543Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-309",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-309"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to upcoming  FortiCamera version 2.0.1 or above\nUpgrade to FortiNDR version 7.6.2 or above\nUpgrade to FortiNDR version 7.4.7 or above\nUpgrade to FortiMail version 7.6.2 or above\nUpgrade to FortiMail version 7.4.4 or above\nUpgrade to FortiRecorder version 7.2.2 or above\nUpgrade to FortiRecorder version 7.0.5 or above\nUpgrade to FortiFone version 3.0.24 or above\nUpgrade to FortiVoice version 7.2.0 or above\nUpgrade to FortiVoice version 7.0.5 or above\nUpgrade to FortiVoice version 6.4.10 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2024-40588",
        "datePublished": "2025-08-12T18:59:11.807Z",
        "dateReserved": "2024-07-05T11:55:50.010Z",
        "dateUpdated": "2026-01-14T09:17:11.543Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-32756 (GCVE-0-2025-32756)

    Vulnerability from cvelistv5 – Published: 2025-05-13 14:46 – Updated: 2026-02-26 18:28
    VLAI CISA KEVIntel
    Summary
    A stack-based buffer overflow vulnerability [CWE-121] vulnerability in Fortinet FortiCamera 2.1.0 through 2.1.3, FortiCamera 2.0 all versions, FortiCamera 1.1 all versions, FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0 through 7.4.4, FortiMail 7.2.0 through 7.2.7, FortiMail 7.0.0 through 7.0.8, FortiNDR 7.6.0, FortiNDR 7.4.0 through 7.4.7, FortiNDR 7.2.0 through 7.2.4, FortiNDR 7.0.0 through 7.0.6, FortiRecorder 7.2.0 through 7.2.3, FortiRecorder 7.0.0 through 7.0.5, FortiRecorder 6.4.0 through 6.4.5, FortiVoice 7.2.0, FortiVoice 7.0.0 through 7.0.6, FortiVoice 6.4.0 through 6.4.10 allows a remote unauthenticated attacker to execute arbitrary code or commands via sending HTTP requests with specially crafted hash cookie.
    SSVC
    Exploitation: active Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Execute unauthorized code or commands
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiNDR Affected: 7.6.0
    Affected: 7.4.0 , ≤ 7.4.7 (semver)
    Affected: 7.2.0 , ≤ 7.2.4 (semver)
    Affected: 7.1.0 , ≤ 7.1.1 (semver)
    Affected: 7.0.0 , ≤ 7.0.6 (semver)
    Affected: 1.5.0 , ≤ 1.5.3 (semver)
    Affected: 1.4.0
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0
        cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.1.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiCamera Affected: 2.1.0 , ≤ 2.1.3 (semver)
    Affected: 2.0.0
    Affected: 1.1.0 , ≤ 1.1.5 (semver)
        cpe:2.3:a:fortinet:forticamera:2.1.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:2.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:forticamera:1.1.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiRecorder Affected: 7.2.0 , ≤ 7.2.3 (semver)
    Affected: 7.0.0 , ≤ 7.0.5 (semver)
    Affected: 6.4.0 , ≤ 6.4.5 (semver)
        cpe:2.3:a:fortinet:fortirecorder:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiVoice Affected: 7.2.0
    Affected: 7.0.0 , ≤ 7.0.6 (semver)
    Affected: 6.4.0 , ≤ 6.4.10 (semver)
        cpe:2.3:a:fortinet:fortivoice:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiMail Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.4 (semver)
    Affected: 7.2.0 , ≤ 7.2.7 (semver)
    Affected: 7.0.0 , ≤ 7.0.8 (semver)
        cpe:2.3:a:fortinet:fortimail:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-32756",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-15T04:01:18.017087Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2025-05-14",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-32756"
                  },
                  "type": "kev"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T18:28:36.454Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-32756"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2025-05-14T00:00:00.000Z",
                "value": "CVE-2025-32756 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.1.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiNDR",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.6.0"
                },
                {
                  "lessThanOrEqual": "7.4.7",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.4",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.1.1",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.6",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.5.3",
                  "status": "affected",
                  "version": "1.5.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.4.0"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "status": "affected",
                  "version": "1.1.0"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:forticamera:2.1.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:2.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:forticamera:1.1.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiCamera",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "2.1.3",
                  "status": "affected",
                  "version": "2.1.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "lessThanOrEqual": "1.1.5",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortirecorder:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiRecorder",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.3",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.5",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.5",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortivoice:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiVoice",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.2.0"
                },
                {
                  "lessThanOrEqual": "7.0.6",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.10",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortimail:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiMail",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.4",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.7",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.8",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A stack-based buffer overflow vulnerability [CWE-121] vulnerability in Fortinet FortiCamera 2.1.0 through 2.1.3, FortiCamera 2.0 all versions, FortiCamera 1.1 all versions, FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0 through 7.4.4, FortiMail 7.2.0 through 7.2.7, FortiMail 7.0.0 through 7.0.8, FortiNDR 7.6.0, FortiNDR 7.4.0 through 7.4.7, FortiNDR 7.2.0 through 7.2.4, FortiNDR 7.0.0 through 7.0.6, FortiRecorder 7.2.0 through 7.2.3, FortiRecorder 7.0.0 through 7.0.5, FortiRecorder 6.4.0 through 6.4.5, FortiVoice 7.2.0, FortiVoice 7.0.0 through 7.0.6, FortiVoice 6.4.0 through 6.4.10 allows a remote unauthenticated attacker to execute arbitrary code or commands via sending HTTP requests with specially crafted hash cookie."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.6,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:X/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "Execute unauthorized code or commands",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-15T12:54:22.845Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-25-254",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-25-254"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiNDR version 7.6.1 or above\nUpgrade to FortiNDR version 7.4.8 or above\nUpgrade to FortiNDR version 7.2.5 or above\nUpgrade to FortiNDR version 7.0.7 or above\nUpgrade to FortiCamera version 2.1.4 or above\nUpgrade to FortiRecorder version 7.2.4 or above\nUpgrade to FortiRecorder version 7.0.6 or above\nUpgrade to FortiRecorder version 6.4.6 or above\nUpgrade to FortiVoice version 7.2.1 or above\nUpgrade to FortiVoice version 7.0.7 or above\nUpgrade to FortiVoice version 6.4.11 or above\nUpgrade to FortiMail version 7.6.3 or above\nUpgrade to FortiMail version 7.4.5 or above\nUpgrade to FortiMail version 7.2.8 or above\nUpgrade to FortiMail version 7.0.9 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-32756",
        "datePublished": "2025-05-13T14:46:44.208Z",
        "dateReserved": "2025-04-10T08:12:12.347Z",
        "dateUpdated": "2026-02-26T18:28:36.454Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }