Search

Find a vulnerability

Search criteria

    77 vulnerabilities found for fortipam by fortinet

    CERTFR-2026-AVI-0440

    Vulnerability from certfr_avis - Published: 2026-04-15 - Updated: 2026-04-15

    De multiples vulnérabilités ont été découvertes dans les produits Fortinet. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    Fortinet FortiSOAR FortiSOAR on-premise versions 7.6.x antérieures à 7.6.5 avec File Content Extraction Connector versions antérieures à 1.3.1
    Fortinet FortiNDR FortiNDR versions 7.x antérieures à 7.4.9
    Fortinet FortiNAC FortiNAC-F versions 7.6.x antérieures à 7.6.6
    Fortinet FortiAnalyzer FortiAnalyzer versions 7.6.x antérieures à 7.6.5
    Fortinet FortiManager FortiManager Cloud versions 7.x antérieures à 7.4.9
    Fortinet FortiWeb FortiWeb versions 7.x antérieures à 7.6.7
    Fortinet FortiSwitch FortiSwitchManager versions 7.0.x antérieures à 7.0.7
    Fortinet FortiSOAR FortiSOAR PaaS versions 7.3.x, 7.4.x et 7.5.x antérieures à 7.5.3 avec File Content Extraction Connector versions antérieures à 1.3.1
    Fortinet FortiNDR FortiNDR versions 7.6.x antérieures à 7.6.1
    Fortinet FortiSandbox FortiSandbox PaaS versions 5.0.x antérieures à 5.0.6
    Fortinet FortiManager FortiManager Cloud versions 7.6.x antérieures à 7.6.5
    Fortinet FortiSandbox FortiSandbox versions 5.0.x antérieures à 5.0.6
    Fortinet FortiOS FortiOS versions antérieures à 7.4.10
    Fortinet FortiDDoS FortiDDoS-F versions 7.2.x antérieures à 7.2.3
    Fortinet FortiAnalyzer FortiAnalyzer versions 7.x antérieures à 7.4.9
    Fortinet FortiManager FortiManager versions 7.6.x antérieures à 7.6.5
    Fortinet FortiAnalyzer FortiAnalyzer Cloud versions 7.x antérieures à 7.4.9
    Fortinet FortiOS FortiOS versions 7.6.x antérieures à 7.6.5
    Fortinet FortiPAM FortiPAM versions antérieures à 1.7.1
    Fortinet FortiWeb FortiWeb versions 8.0.x antérieures à 8.0.4
    Fortinet FortiManager FortiManager versions 7.x antérieures à 7.4.9
    Fortinet FortiProxy FortiProxy versions 7.x antérieures à 7.4.12
    Fortinet FortiSOAR FortiSOAR on-premise versions 7.3.x, 7.4.x et 7.5.x antérieures à 7.5.3 avec File Content Extraction Connector versions antérieures à 1.3.1
    Fortinet FortiSwitch FortiSwitchManager versions 7.2.x antérieures à 7.2.8
    Fortinet FortiSandbox FortiSandbox PaaS versions 4.2.x et 4.4.x antérieures à 4.4.9
    Fortinet FortiAnalyzer FortiAnalyzer Cloud versions 7.6.x antérieures à 7.6.5
    Fortinet FortiProxy FortiProxy versions 7.6.x antérieures à 7.6.5
    Fortinet FortiClientEMS FortiClientEMS versions 7.x antérieures à 7.2.13
    Fortinet FortiSandbox FortiSandbox versions 4.2.x et 4.4.x antérieures à 4.4.9 (cette version reste affectée par la vulnérabilité CVE-2026-27316)
    Fortinet FortiVoice FortiVoice versions 7.0.x antérieures à 7.0.2
    Fortinet FortiClientEMS FortiClientEMS versions 7.4.x antérieures à 7.4.6
    Fortinet FortiSOAR FortiSOAR PaaS versions 7.6.x antérieures à 7.6.5 avec File Content Extraction Connector versions antérieures à 1.3.1
    References
    Bulletin de sécurité Fortinet FG-IR-26-111 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-110 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-101 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-120 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-105 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-106 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-102 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-114 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-107 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-109 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-115 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-119 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-103 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-108 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-125 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-121 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-100 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-118 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-124 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-113 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-127 2026-04-15 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-117 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-122 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-104 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-112 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-126 2026-04-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-26-116 2026-04-14 vendor-advisory

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "FortiSOAR on-premise versions 7.6.x ant\u00e9rieures \u00e0 7.6.5 avec File Content Extraction Connector versions ant\u00e9rieures \u00e0 1.3.1",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiNDR versions 7.x ant\u00e9rieures \u00e0 7.4.9",
          "product": {
            "name": "FortiNDR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiNAC-F versions 7.6.x ant\u00e9rieures \u00e0 7.6.6",
          "product": {
            "name": "FortiNAC",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer versions 7.6.x ant\u00e9rieures \u00e0 7.6.5",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager Cloud versions 7.x ant\u00e9rieures \u00e0 7.4.9",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.x ant\u00e9rieures \u00e0 7.6.7",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSwitchManager versions 7.0.x ant\u00e9rieures \u00e0 7.0.7",
          "product": {
            "name": "FortiSwitch",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR PaaS versions 7.3.x, 7.4.x et 7.5.x ant\u00e9rieures \u00e0 7.5.3 avec File Content Extraction Connector versions ant\u00e9rieures \u00e0 1.3.1",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiNDR versions 7.6.x ant\u00e9rieures \u00e0 7.6.1",
          "product": {
            "name": "FortiNDR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSandbox PaaS versions 5.0.x ant\u00e9rieures \u00e0 5.0.6",
          "product": {
            "name": "FortiSandbox",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager Cloud versions 7.6.x ant\u00e9rieures \u00e0 7.6.5",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSandbox versions 5.0.x ant\u00e9rieures \u00e0 5.0.6",
          "product": {
            "name": "FortiSandbox",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiOS versions ant\u00e9rieures \u00e0 7.4.10",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiDDoS-F versions 7.2.x ant\u00e9rieures \u00e0 7.2.3",
          "product": {
            "name": "FortiDDoS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer versions 7.x ant\u00e9rieures \u00e0 7.4.9",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions 7.6.x ant\u00e9rieures \u00e0 7.6.5",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer Cloud versions 7.x ant\u00e9rieures \u00e0 7.4.9",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiOS versions 7.6.x ant\u00e9rieures \u00e0 7.6.5",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiPAM versions ant\u00e9rieures \u00e0 1.7.1",
          "product": {
            "name": "FortiPAM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 8.0.x ant\u00e9rieures \u00e0 8.0.4",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions 7.x ant\u00e9rieures \u00e0 7.4.9",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy versions 7.x ant\u00e9rieures \u00e0 7.4.12",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR on-premise versions 7.3.x, 7.4.x et 7.5.x ant\u00e9rieures \u00e0 7.5.3 avec File Content Extraction Connector versions ant\u00e9rieures \u00e0 1.3.1",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSwitchManager versions 7.2.x ant\u00e9rieures \u00e0 7.2.8",
          "product": {
            "name": "FortiSwitch",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSandbox PaaS versions 4.2.x et 4.4.x ant\u00e9rieures \u00e0 4.4.9",
          "product": {
            "name": "FortiSandbox",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer Cloud versions 7.6.x ant\u00e9rieures \u00e0 7.6.5",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy versions 7.6.x ant\u00e9rieures \u00e0 7.6.5",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiClientEMS versions 7.x ant\u00e9rieures \u00e0 7.2.13",
          "product": {
            "name": "FortiClientEMS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSandbox versions 4.2.x et 4.4.x ant\u00e9rieures \u00e0 4.4.9 (cette version reste affect\u00e9e par la vuln\u00e9rabilit\u00e9 CVE-2026-27316)",
          "product": {
            "name": "FortiSandbox",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiVoice versions 7.0.x ant\u00e9rieures \u00e0 7.0.2",
          "product": {
            "name": "FortiVoice",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiClientEMS versions 7.4.x ant\u00e9rieures \u00e0 7.4.6",
          "product": {
            "name": "FortiClientEMS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR PaaS versions 7.6.x ant\u00e9rieures \u00e0 7.6.5 avec File Content Extraction Connector versions ant\u00e9rieures \u00e0 1.3.1",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2026-39809",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-39809"
        },
        {
          "name": "CVE-2025-61848",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-61848"
        },
        {
          "name": "CVE-2026-22155",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-22155"
        },
        {
          "name": "CVE-2026-39812",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-39812"
        },
        {
          "name": "CVE-2026-21741",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-21741"
        },
        {
          "name": "CVE-2026-27316",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-27316"
        },
        {
          "name": "CVE-2025-61624",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-61624"
        },
        {
          "name": "CVE-2026-39808",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-39808"
        },
        {
          "name": "CVE-2026-22574",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-22574"
        },
        {
          "name": "CVE-2025-61886",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-61886"
        },
        {
          "name": "CVE-2024-23104",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-23104"
        },
        {
          "name": "CVE-2026-39811",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-39811"
        },
        {
          "name": "CVE-2026-39814",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-39814"
        },
        {
          "name": "CVE-2026-39810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-39810"
        },
        {
          "name": "CVE-2026-25691",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-25691"
        },
        {
          "name": "CVE-2026-22576",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-22576"
        },
        {
          "name": "CVE-2026-22573",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-22573"
        },
        {
          "name": "CVE-2026-39815",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-39815"
        },
        {
          "name": "CVE-2026-21742",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-21742"
        },
        {
          "name": "CVE-2026-22828",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-22828"
        },
        {
          "name": "CVE-2026-22154",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-22154"
        },
        {
          "name": "CVE-2026-23708",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23708"
        },
        {
          "name": "CVE-2025-53847",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-53847"
        },
        {
          "name": "CVE-2026-39813",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-39813"
        },
        {
          "name": "CVE-2025-68649",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-68649"
        },
        {
          "name": "CVE-2025-59809",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59809"
        },
        {
          "name": "CVE-2026-40688",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40688"
        }
      ],
      "initial_release_date": "2026-04-15T00:00:00",
      "last_revision_date": "2026-04-15T00:00:00",
      "links": [],
      "reference": "CERTFR-2026-AVI-0440",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2026-04-15T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "D\u00e9ni de service \u00e0 distance"
        },
        {
          "description": "Injection de code indirecte \u00e0 distance (XSS)"
        },
        {
          "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
        },
        {
          "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
        },
        {
          "description": "Injection SQL (SQLi)"
        },
        {
          "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
        },
        {
          "description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
        },
        {
          "description": "Contournement de la politique de s\u00e9curit\u00e9"
        },
        {
          "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
        },
        {
          "description": "\u00c9l\u00e9vation de privil\u00e8ges"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Fortinet. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Fortinet",
      "vendor_advisories": [
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-111",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-111"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-110",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-110"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-101",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-101"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-120",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-120"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-105",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-105"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-106",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-106"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-102",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-102"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-114",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-114"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-107",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-107"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-109",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-109"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-115",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-115"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-119",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-119"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-103",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-103"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-108",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-108"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-125",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-125"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-121",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-121"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-100",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-100"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-118",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-118"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-124",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-124"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-113",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-113"
        },
        {
          "published_at": "2026-04-15",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-127",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-127"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-117",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-117"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-122",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-122"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-104",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-104"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-112",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-112"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-126",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-126"
        },
        {
          "published_at": "2026-04-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-26-116",
          "url": "https://www.fortiguard.com/psirt/FG-IR-26-116"
        }
      ]
    }

    CERTFR-2025-AVI-1084

    Vulnerability from certfr_avis - Published: 2025-12-10 - Updated: 2025-12-10

    De multiples vulnérabilités ont été découvertes dans les produits Fortinet. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    L'éditeur précise que la version 24.2 de FortiSandbox Cloud sera publiée ultérieurement.

    Impacted products
    Vendor Product Description
    Fortinet FortiAnalyzer FortiAnalyzer versions 7.2.x antérieures à 7.2.6
    Fortinet FortiOS FortiOS versions 7.6.x antérieures à 7.6.4
    Fortinet FortiSOAR FortiSOAR PaaS versions antérieures à 7.5.2
    Fortinet FortiVoice FortiVoice versions 7.2.x antérieures à 7.2.3
    Fortinet FortiSOAR FortiSOAR PaaS versions 7.6.x antérieures à 7.6.3
    Fortinet FortiSOAR FortiSOAR on-premise versions 7.6.x antérieures à 7.6.3
    Fortinet FortiWeb FortiWeb versions 7.6.x antérieures à 7.6.6
    Fortinet N/A FortiExtender versions antérieures à 7.4.8
    Fortinet FortiProxy FortiProxy versions 7.0.x antérieures à 7.0.22
    Fortinet FortiManager FortiManager versions 7.4.x antérieures à 7.4.3
    Fortinet FortiManager FortiManager versions antérieures à 7.2.6
    Fortinet FortiSRA FortiSRA versions antérieures à 1.5.x
    Fortinet FortiSandbox FortiSandbox versions 5.0.x antérieures à 5.0.3
    Fortinet FortiPortal FortiPortal versions antérieures à 7.4.6
    Fortinet FortiProxy FortiProxy versions 7.2.x antérieures à 7.2.15
    Fortinet FortiSwitch FortiSwitchManager versions 7.2.x antérieures à 7.2.7
    Fortinet FortiOS FortiOS versions 7.4.x antérieures à 7.4.9
    Fortinet FortiWeb FortiWeb versions 7.2.x antérieures à 7.2.12
    Fortinet FortiOS FortiOS versions 7.2.x antérieures à 7.2.12
    Fortinet FortiAnalyzer FortiAnalyzer versions 7.4.x antérieures à 7.4.3
    Fortinet FortiWeb FortiWeb versions 8.0.x antérieures à 8.0.2
    Fortinet FortiSandbox FortiSandbox Cloud versions antérieures à 24.2
    Fortinet N/A FortiExtender versions 7.6.x antérieures à 7.6.4
    Fortinet FortiOS FortiOS versions antérieures à 7.0.18
    Fortinet FortiSASE FortiSASE versions 24.1.x antérieures à 24.1.c
    Fortinet FortiSandbox FortiSandbox versions 4.x antérieures à 4.4.8
    Fortinet FortiWeb FortiWeb versions 7.0.x antérieures à 7.0.12
    Fortinet FortiVoice FortiVoice versions antérieures à 7.0.8
    Fortinet FortiSOAR FortiSOAR on-premise versions antérieures à 7.5.2
    Fortinet FortiProxy FortiProxy versions 7.4.x antérieures à 7.4.11
    Fortinet FortiPAM FortiPAM versions antérieures à 1.5.x
    Fortinet FortiAuthenticator FortiAuthenticator versions antérieures à 6.6.7
    Fortinet FortiSwitch FortiSwitchManager versions 7.0.x antérieures à 7.0.6
    Fortinet FortiProxy FortiProxy versions 7.6.x antérieures à 7.6.4
    Fortinet FortiWeb FortiWeb versions 7.4.x antérieures à 7.4.11
    References

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "FortiAnalyzer versions 7.2.x ant\u00e9rieures \u00e0 7.2.6",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiOS versions 7.6.x ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR PaaS versions ant\u00e9rieures \u00e0 7.5.2",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiVoice versions 7.2.x ant\u00e9rieures \u00e0 7.2.3",
          "product": {
            "name": "FortiVoice",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR PaaS versions 7.6.x ant\u00e9rieures \u00e0 7.6.3",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR on-premise versions 7.6.x ant\u00e9rieures \u00e0 7.6.3",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.6.x ant\u00e9rieures \u00e0 7.6.6",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiExtender versions ant\u00e9rieures \u00e0 7.4.8",
          "product": {
            "name": "N/A",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy versions 7.0.x ant\u00e9rieures \u00e0 7.0.22",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions 7.4.x ant\u00e9rieures \u00e0 7.4.3",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions ant\u00e9rieures \u00e0 7.2.6",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSRA versions ant\u00e9rieures \u00e0 1.5.x",
          "product": {
            "name": "FortiSRA",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSandbox versions 5.0.x ant\u00e9rieures \u00e0 5.0.3",
          "product": {
            "name": "FortiSandbox",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiPortal versions ant\u00e9rieures \u00e0 7.4.6",
          "product": {
            "name": "FortiPortal",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy versions 7.2.x ant\u00e9rieures \u00e0 7.2.15",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSwitchManager versions 7.2.x ant\u00e9rieures \u00e0 7.2.7",
          "product": {
            "name": "FortiSwitch",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiOS versions 7.4.x ant\u00e9rieures \u00e0 7.4.9",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.2.x ant\u00e9rieures \u00e0 7.2.12",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiOS versions 7.2.x ant\u00e9rieures \u00e0 7.2.12",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer versions 7.4.x ant\u00e9rieures \u00e0 7.4.3",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 8.0.x ant\u00e9rieures \u00e0 8.0.2",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSandbox Cloud versions ant\u00e9rieures \u00e0 24.2",
          "product": {
            "name": "FortiSandbox",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiExtender versions 7.6.x ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "N/A",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiOS versions ant\u00e9rieures \u00e0 7.0.18",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSASE versions 24.1.x ant\u00e9rieures \u00e0 24.1.c",
          "product": {
            "name": "FortiSASE",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSandbox versions 4.x ant\u00e9rieures \u00e0 4.4.8",
          "product": {
            "name": "FortiSandbox",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.0.x ant\u00e9rieures \u00e0 7.0.12",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiVoice versions ant\u00e9rieures \u00e0 7.0.8",
          "product": {
            "name": "FortiVoice",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR on-premise versions ant\u00e9rieures \u00e0 7.5.2",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy versions 7.4.x ant\u00e9rieures \u00e0 7.4.11",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiPAM versions ant\u00e9rieures \u00e0 1.5.x",
          "product": {
            "name": "FortiPAM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAuthenticator versions ant\u00e9rieures \u00e0 6.6.7",
          "product": {
            "name": "FortiAuthenticator",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSwitchManager versions 7.0.x ant\u00e9rieures \u00e0 7.0.6",
          "product": {
            "name": "FortiSwitch",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy versions 7.6.x ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.4.x ant\u00e9rieures \u00e0 7.4.11",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "L\u0027\u00e9diteur pr\u00e9cise que la version 24.2 de FortiSandbox Cloud sera publi\u00e9e ult\u00e9rieurement.",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2025-60024",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-60024"
        },
        {
          "name": "CVE-2025-64153",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-64153"
        },
        {
          "name": "CVE-2025-57823",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-57823"
        },
        {
          "name": "CVE-2024-40593",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40593"
        },
        {
          "name": "CVE-2025-53679",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-53679"
        },
        {
          "name": "CVE-2025-62631",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-62631"
        },
        {
          "name": "CVE-2025-54353",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54353"
        },
        {
          "name": "CVE-2025-53949",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-53949"
        },
        {
          "name": "CVE-2025-59719",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59719"
        },
        {
          "name": "CVE-2025-59810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59810"
        },
        {
          "name": "CVE-2025-64471",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-64471"
        },
        {
          "name": "CVE-2025-64447",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-64447"
        },
        {
          "name": "CVE-2024-47570",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-47570"
        },
        {
          "name": "CVE-2025-59808",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59808"
        },
        {
          "name": "CVE-2025-54838",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54838"
        },
        {
          "name": "CVE-2025-59923",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59923"
        },
        {
          "name": "CVE-2025-64156",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-64156"
        },
        {
          "name": "CVE-2025-59718",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59718"
        }
      ],
      "initial_release_date": "2025-12-10T00:00:00",
      "last_revision_date": "2025-12-10T00:00:00",
      "links": [],
      "reference": "CERTFR-2025-AVI-1084",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2025-12-10T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "D\u00e9ni de service \u00e0 distance"
        },
        {
          "description": "Injection de code indirecte \u00e0 distance (XSS)"
        },
        {
          "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
        },
        {
          "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
        },
        {
          "description": "Injection SQL (SQLi)"
        },
        {
          "description": "Contournement de la politique de s\u00e9curit\u00e9"
        },
        {
          "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
        },
        {
          "description": "\u00c9l\u00e9vation de privil\u00e8ges"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Fortinet. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Fortinet",
      "vendor_advisories": [
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-411",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-411"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-479",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-479"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-268",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-268"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-362",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-362"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-599",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-599"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-133",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-133"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-616",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-616"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-812",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-812"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-739",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-739"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-984",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-984"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-945",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-945"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-477",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-477"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-647",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-647"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-601",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-601"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-454",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-454"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-032",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-032"
        },
        {
          "published_at": "2025-12-09",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-554",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-554"
        }
      ]
    }

    CERTFR-2025-AVI-1023

    Vulnerability from certfr_avis - Published: 2025-11-19 - Updated: 2025-11-19

    De multiples vulnérabilités ont été découvertes dans les produits Fortinet. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.

    Fortinet indique que la vulnérabilité CVE-2025-58034 est activement exploitée.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    Fortinet FortiADC FortiADC versions 7.4.x antérieures à 7.4.8
    Fortinet FortiOS FortiOS versions antérieures à 7.6.4
    Fortinet FortiMail FortiMail versions 7.6.x antérieures à 7.6.4
    Fortinet FortiVoice FortiVoice versions 7.2.x antérieures à 7.2.3
    Fortinet N/A FortiExtender versions antérieures à 7.4.8
    Fortinet FortiSASE FortiSASE versions antérieures à 25.3.c
    Fortinet FortiClient FortiClientWindows versions antérieures à 7.2.11
    Fortinet FortiClient FortiClientWindows versions 7.4.x antérieures à 7.4.4
    Fortinet FortiVoice FortiVoice versions 7.0.x antérieures à 7.0.8
    Fortinet FortiSandbox FortiSandbox versions 5.0.x antérieures à 5.0.2
    Fortinet FortiMail FortiMail versions antérieures à 7.4.6 (à venir)
    Fortinet FortiPAM FortiPAM versions antérieures à 1.6.1
    Fortinet FortiADC FortiADC versions 7.6.x antérieures à 7.6.4
    Fortinet FortiWeb FortiWeb versions 8.0.x antérieures à 8.0.2
    Fortinet FortiADC FortiADC versions 8.0.x antérieures à 8.0.1
    Fortinet FortiProxy FortiProxy versions antérieures à 7.6.4
    Fortinet N/A FortiExtender versions 7.6.x antérieures à 7.6.3
    Fortinet FortiSandbox FortiSandbox versions à 4.4.8
    Fortinet FortiWeb FortiWeb versions antérieures à 7.6.6
    References

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "FortiADC versions 7.4.x ant\u00e9rieures \u00e0 7.4.8",
          "product": {
            "name": "FortiADC",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiOS versions ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiMail versions 7.6.x ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "FortiMail",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiVoice versions 7.2.x ant\u00e9rieures \u00e0 7.2.3",
          "product": {
            "name": "FortiVoice",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiExtender versions ant\u00e9rieures \u00e0 7.4.8",
          "product": {
            "name": "N/A",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSASE versions ant\u00e9rieures \u00e0 25.3.c",
          "product": {
            "name": "FortiSASE",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiClientWindows versions ant\u00e9rieures \u00e0 7.2.11",
          "product": {
            "name": "FortiClient",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiClientWindows versions 7.4.x ant\u00e9rieures \u00e0 7.4.4",
          "product": {
            "name": "FortiClient",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiVoice versions 7.0.x ant\u00e9rieures \u00e0 7.0.8",
          "product": {
            "name": "FortiVoice",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSandbox versions 5.0.x ant\u00e9rieures \u00e0 5.0.2",
          "product": {
            "name": "FortiSandbox",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiMail versions ant\u00e9rieures \u00e0 7.4.6 (\u00e0 venir)",
          "product": {
            "name": "FortiMail",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiPAM versions ant\u00e9rieures \u00e0 1.6.1",
          "product": {
            "name": "FortiPAM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiADC versions 7.6.x ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "FortiADC",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 8.0.x ant\u00e9rieures \u00e0 8.0.2",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiADC versions 8.0.x ant\u00e9rieures \u00e0 8.0.1",
          "product": {
            "name": "FortiADC",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy versions ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiExtender versions 7.6.x ant\u00e9rieures \u00e0 7.6.3",
          "product": {
            "name": "N/A",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSandbox versions \u00e0 4.4.8",
          "product": {
            "name": "FortiSandbox",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions ant\u00e9rieures \u00e0 7.6.6",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2025-46215",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-46215"
        },
        {
          "name": "CVE-2025-58412",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-58412"
        },
        {
          "name": "CVE-2025-54821",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54821"
        },
        {
          "name": "CVE-2025-46776",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-46776"
        },
        {
          "name": "CVE-2025-46775",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-46775"
        },
        {
          "name": "CVE-2025-59669",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59669"
        },
        {
          "name": "CVE-2025-54660",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54660"
        },
        {
          "name": "CVE-2025-47761",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-47761"
        },
        {
          "name": "CVE-2025-48839",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-48839"
        },
        {
          "name": "CVE-2025-53843",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-53843"
        },
        {
          "name": "CVE-2025-61713",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-61713"
        },
        {
          "name": "CVE-2025-54971",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54971"
        },
        {
          "name": "CVE-2025-58692",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-58692"
        },
        {
          "name": "CVE-2025-54972",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54972"
        },
        {
          "name": "CVE-2025-58413",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-58413"
        },
        {
          "name": "CVE-2025-58034",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-58034"
        },
        {
          "name": "CVE-2025-46373",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-46373"
        }
      ],
      "initial_release_date": "2025-11-19T00:00:00",
      "last_revision_date": "2025-11-19T00:00:00",
      "links": [],
      "reference": "CERTFR-2025-AVI-1023",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2025-11-19T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "Injection de code indirecte \u00e0 distance (XSS)"
        },
        {
          "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
        },
        {
          "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
        },
        {
          "description": "Injection SQL (SQLi)"
        },
        {
          "description": "Contournement de la politique de s\u00e9curit\u00e9"
        },
        {
          "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
        },
        {
          "description": "\u00c9l\u00e9vation de privil\u00e8ges"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Fortinet. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n\nFortinet indique que la vuln\u00e9rabilit\u00e9 CVE-2025-58034 est activement exploit\u00e9e.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Fortinet",
      "vendor_advisories": [
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-259",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-259"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-125",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-125"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-112",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-112"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-358",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-358"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-686",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-686"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-513",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-513"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-789",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-789"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-632",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-632"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-501",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-501"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-545",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-545"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-634",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-634"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-736",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-736"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-844",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-844"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-251",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-251"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-666",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-666"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-843",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-843"
        },
        {
          "published_at": "2025-11-18",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-225",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-225"
        }
      ]
    }

    CERTFR-2025-AVI-0871

    Vulnerability from certfr_avis - Published: 2025-10-15 - Updated: 2025-10-15

    De multiples vulnérabilités ont été découvertes dans les produits Fortinet. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    Fortinet FortiDLP FortiDLP toutes versions 10.3.x, 10.4.x, 10.5.x, 11.0.x, 11.1.x, 11.2.x, 11.3.x, 11.4.x, 11.5.x, 12.0.x, 12.1.x
    Fortinet FortiADC FortiADC toutes versions 6.2.x et 7.0.x
    Fortinet FortiManager FortiManager Cloud versions postérieures à 7.0.1 et antérieures à 7.0.14
    Fortinet FortiAnalyzer FortiAnalyzer Cloud versions postérieures à 7.2.1 et antérieures à 7.2.10
    Fortinet FortiTester FortiTester toutes versions 4.2.x, 7.0.x, 7.1.x, 7.2.x et 7.3.x
    Fortinet FortiManager FortiManager versions 7.6.x antérieures à 7.6.2
    Fortinet FortiOS FortiOS versions 7.6.x antérieures à 7.6.4
    Fortinet FortiVoice FortiVoice versions 6.0.7 à 6.0.12
    Fortinet FortiClient FortiClientMac toutes versions 7.0.x
    Fortinet FortiSOAR FortiSOAR on-premise toutes versions 7.3.x et 7.4.x
    Fortinet FortiSIEM FortiSIEM versions 7.2.x antérieures à 7.2.3
    Fortinet FortiPAM FortiPAM toutes versions 1.0.x, 1.1.x, 1.2.x et 1.3.x
    Fortinet FortiSRA FortiSRA versions 1.5.x antérieures à 1.5.1
    Fortinet FortiWeb FortiWeb toutes versions 6.4.x, 7.0.x et 7.2.x
    Fortinet FortiDLP FortiDLP versions 12.2.x et antérieures à 12.2.3
    Fortinet FortiManager FortiManager Cloud versions 7.6.x antérieures à 7.6.3
    Fortinet FortiSOAR FortiSOAR on-premise versions 7.6.x antérieures à 7.6.2
    Fortinet FortiNDR FortiNDR toutes versions 1.5.x, 7.0.x, 7.1.x et 7.2.x
    Fortinet FortiClient FortiClientWindows versions 7.4.x antérieures à 7.4.4
    Fortinet FortiAnalyzer FortiAnalyzer Cloud versions postérieures à 7.4.1 et antérieures à 7.4.6
    Fortinet FortiManager FortiManager versions 7.2.x antérieures à 7.2.10
    Fortinet FortiVoice FortiVoice versions 7.0.x antérieures à 7.0.5
    Fortinet FortiAnalyzer FortiAnalyzer versions 7.4.x antérieures à 7.4.7
    Fortinet FortiClient FortiClientWindows versions 7.2.x antérieures à 7.2.12
    Fortinet FortiManager FortiManager Cloud toutes versions 6.4.x
    Fortinet FortiPAM FortiPAM versions 1.4.x antérieures à 1.4.3
    Fortinet FortiManager FortiManager Cloud versions postérieures à 7.2.1 et antérieures à 7.2.10
    Fortinet FortiPAM FortiPAM versions 1.5.x antérieures à 1.5.1
    Fortinet FortiSIEM FortiSIEM toutes versions 6.2.x, 6.3.x, 6.4.x, 6.5.x, 6.6.x, 6.7.x, 7.0.x et 7.1.x
    Fortinet FortiMail FortiMail versions 7.2.x antérieures à 7.2.7
    Fortinet FortiSRA FortiSRA versions 1.4.x antérieures à 1.4.3
    Fortinet FortiRecorder FortiRecorder versions 7.0.x antérieures à 7.0.5
    Fortinet FortiWeb FortiWeb versions 7.4.x antérieures à 7.4.5
    Fortinet FortiManager FortiManager versions 7.4.x antérieures à 7.4.6
    Fortinet FortiADC FortiADC versions 7.2.x antérieures à 7.2.4
    Fortinet FortiAnalyzer FortiAnalyzer versions 7.6.x antérieures à 7.6.4
    Fortinet FortiClient FortiClientWindows toutes versions 7.0.x
    Fortinet FortiIsolator FortiIsolator versions 2.4.x antérieures à 2.4.5
    Fortinet FortiTester FortiTester version 7.4 antérieures à 7.4.3
    Fortinet FortiVoice FortiVoice versions 6.4.x antérieures à 6.4.10
    Fortinet FortiManager FortiManager Cloud versions postérieures à 7.4.1 et antérieures à 7.4.6
    Fortinet FortiOS FortiOS toutes versions 6.0.x, 6.2.x, 6.4.x, 7.0.x, 7.2.x et 7.4.x
    Fortinet FortiIsolator FortiIsolator toutes versions 2.3.x
    Fortinet FortiADC FortiADC versions 7.1.x antérieures à 7.1.5
    Fortinet FortiProxy FortiProxy toutes versions 1.0.x, 1.1.x, 1.2.x, 2.0.x, 7.0.x, 7.2.x et 7.4.x
    Fortinet FortiAnalyzer FortiAnalyzer Cloud toutes versions 6.4.x
    Fortinet FortiAnalyzer FortiAnalyzer toutes versions 6.0.x, 6.2.x, 6.4.x, 7.0.x et 7.2.x
    Fortinet FortiSwitch FortiSwitchManager versions 7.2.x antérieures à 7.2.6
    Fortinet FortiManager FortiManager versions 7.0.x antérieures à 7.0.14
    Fortinet FortiManager FortiManager toutes versions 6.0.x, 6.2.x et 6.4.x
    Fortinet FortiWeb FortiWeb versions 7.6.x antérieures à 7.6.1
    Fortinet FortiNDR FortiNDR versions 7.6.x antérieures à 7.6.2
    Fortinet FortiProxy FortiProxy versions 7.6.x antérieures à 7.6.4
    Fortinet FortiADC FortiADC versions 7.4.x antérieures à 7.4.1
    Fortinet FortiNDR FortiNDR versions 7.4.x antérieures à 7.4.9
    Fortinet FortiSwitch FortiSwitchManager versions 7.0.x antérieures à 7.0.4
    Fortinet FortiMail FortiMail versions 7.4.x antérieures à 7.4.3
    Fortinet FortiRecorder FortiRecorder versions 7.2.x antérieures à 7.2.2
    Fortinet FortiClient FortiClientMac versions 7.4.x antérieures à 7.4.4
    Fortinet FortiAnalyzer FortiAnalyzer Cloud versions postérieures à 7.0.1 et antérieures à 7.0.14
    Fortinet FortiClient FortiClientMac versions 7.2.x antérieures à 7.2.12
    Fortinet FortiSOAR FortiSOAR on-premise versions 7.5.x antérieures à 7.5.2
    References
    Bulletin de sécurité Fortinet FG-IR-24-372 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-412 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-228 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-280 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-685 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-452 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-487 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-639 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-037 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-684 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-23-354 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-041 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-198 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-160 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-361 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-861 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-542 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-771 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-010 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-378 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-442 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-664 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-756 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-126 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-628 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-457 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-062 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-24-546 2025-10-14 vendor-advisory
    Bulletin de sécurité Fortinet FG-IR-25-653 2025-10-14 vendor-advisory

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "FortiDLP toutes versions 10.3.x, 10.4.x, 10.5.x, 11.0.x, 11.1.x, 11.2.x, 11.3.x, 11.4.x, 11.5.x, 12.0.x, 12.1.x",
          "product": {
            "name": "FortiDLP",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiADC toutes versions 6.2.x et 7.0.x",
          "product": {
            "name": "FortiADC",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager Cloud versions post\u00e9rieures \u00e0 7.0.1 et ant\u00e9rieures \u00e0 7.0.14",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer Cloud versions post\u00e9rieures \u00e0 7.2.1 et ant\u00e9rieures \u00e0 7.2.10",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiTester toutes versions 4.2.x, 7.0.x, 7.1.x, 7.2.x et 7.3.x",
          "product": {
            "name": "FortiTester",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions 7.6.x ant\u00e9rieures \u00e0 7.6.2",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiOS versions 7.6.x ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiVoice versions 6.0.7 \u00e0 6.0.12",
          "product": {
            "name": "FortiVoice",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiClientMac toutes versions 7.0.x",
          "product": {
            "name": "FortiClient",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR on-premise toutes versions 7.3.x et 7.4.x",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSIEM versions 7.2.x ant\u00e9rieures \u00e0 7.2.3",
          "product": {
            "name": "FortiSIEM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiPAM toutes versions 1.0.x, 1.1.x, 1.2.x et 1.3.x",
          "product": {
            "name": "FortiPAM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSRA versions 1.5.x ant\u00e9rieures \u00e0 1.5.1",
          "product": {
            "name": "FortiSRA",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb toutes versions 6.4.x, 7.0.x et 7.2.x",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiDLP versions 12.2.x et ant\u00e9rieures \u00e0 12.2.3",
          "product": {
            "name": "FortiDLP",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager Cloud versions 7.6.x ant\u00e9rieures \u00e0 7.6.3",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR on-premise versions 7.6.x ant\u00e9rieures \u00e0 7.6.2",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiNDR toutes versions 1.5.x, 7.0.x, 7.1.x et 7.2.x",
          "product": {
            "name": "FortiNDR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiClientWindows versions 7.4.x ant\u00e9rieures \u00e0 7.4.4",
          "product": {
            "name": "FortiClient",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer Cloud versions post\u00e9rieures \u00e0 7.4.1 et ant\u00e9rieures \u00e0 7.4.6",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions 7.2.x ant\u00e9rieures \u00e0 7.2.10",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiVoice versions 7.0.x ant\u00e9rieures \u00e0 7.0.5",
          "product": {
            "name": "FortiVoice",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer versions 7.4.x ant\u00e9rieures \u00e0 7.4.7",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiClientWindows versions 7.2.x ant\u00e9rieures \u00e0 7.2.12",
          "product": {
            "name": "FortiClient",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager Cloud toutes versions 6.4.x",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiPAM versions 1.4.x ant\u00e9rieures \u00e0 1.4.3",
          "product": {
            "name": "FortiPAM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager Cloud versions post\u00e9rieures \u00e0 7.2.1 et ant\u00e9rieures \u00e0 7.2.10",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiPAM versions 1.5.x ant\u00e9rieures \u00e0 1.5.1",
          "product": {
            "name": "FortiPAM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSIEM toutes versions 6.2.x, 6.3.x, 6.4.x, 6.5.x, 6.6.x, 6.7.x, 7.0.x et 7.1.x",
          "product": {
            "name": "FortiSIEM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiMail versions 7.2.x ant\u00e9rieures \u00e0 7.2.7",
          "product": {
            "name": "FortiMail",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSRA versions 1.4.x ant\u00e9rieures \u00e0 1.4.3",
          "product": {
            "name": "FortiSRA",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiRecorder versions 7.0.x ant\u00e9rieures \u00e0 7.0.5",
          "product": {
            "name": "FortiRecorder",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.4.x ant\u00e9rieures \u00e0 7.4.5",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions 7.4.x ant\u00e9rieures \u00e0 7.4.6",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiADC versions 7.2.x ant\u00e9rieures \u00e0 7.2.4",
          "product": {
            "name": "FortiADC",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer versions 7.6.x ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiClientWindows toutes versions 7.0.x",
          "product": {
            "name": "FortiClient",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiIsolator versions 2.4.x ant\u00e9rieures \u00e0 2.4.5",
          "product": {
            "name": "FortiIsolator",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiTester version 7.4 ant\u00e9rieures \u00e0  7.4.3",
          "product": {
            "name": "FortiTester",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiVoice versions 6.4.x ant\u00e9rieures \u00e0 6.4.10",
          "product": {
            "name": "FortiVoice",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager Cloud versions post\u00e9rieures \u00e0 7.4.1 et ant\u00e9rieures \u00e0 7.4.6",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiOS toutes versions 6.0.x, 6.2.x, 6.4.x, 7.0.x, 7.2.x et 7.4.x",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiIsolator toutes versions 2.3.x",
          "product": {
            "name": "FortiIsolator",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiADC versions 7.1.x ant\u00e9rieures \u00e0 7.1.5",
          "product": {
            "name": "FortiADC",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy toutes versions 1.0.x, 1.1.x, 1.2.x, 2.0.x, 7.0.x, 7.2.x et 7.4.x",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer Cloud toutes versions 6.4.x",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer toutes versions 6.0.x, 6.2.x, 6.4.x, 7.0.x et 7.2.x",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSwitchManager versions 7.2.x ant\u00e9rieures \u00e0 7.2.6",
          "product": {
            "name": "FortiSwitch",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions 7.0.x ant\u00e9rieures \u00e0 7.0.14",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager toutes versions 6.0.x, 6.2.x et 6.4.x",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.6.x ant\u00e9rieures \u00e0 7.6.1",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiNDR versions 7.6.x ant\u00e9rieures \u00e0 7.6.2",
          "product": {
            "name": "FortiNDR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy versions 7.6.x ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiADC versions 7.4.x ant\u00e9rieures \u00e0 7.4.1",
          "product": {
            "name": "FortiADC",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiNDR versions 7.4.x ant\u00e9rieures \u00e0 7.4.9",
          "product": {
            "name": "FortiNDR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSwitchManager versions 7.0.x ant\u00e9rieures \u00e0 7.0.4",
          "product": {
            "name": "FortiSwitch",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiMail versions 7.4.x ant\u00e9rieures \u00e0 7.4.3",
          "product": {
            "name": "FortiMail",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiRecorder versions 7.2.x ant\u00e9rieures \u00e0 7.2.2",
          "product": {
            "name": "FortiRecorder",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiClientMac versions 7.4.x ant\u00e9rieures \u00e0 7.4.4",
          "product": {
            "name": "FortiClient",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiAnalyzer Cloud versions post\u00e9rieures \u00e0 7.0.1 et ant\u00e9rieures \u00e0 7.0.14",
          "product": {
            "name": "FortiAnalyzer",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiClientMac versions 7.2.x ant\u00e9rieures \u00e0 7.2.12",
          "product": {
            "name": "FortiClient",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR on-premise versions 7.5.x ant\u00e9rieures \u00e0 7.5.2",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2025-58325",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-58325"
        },
        {
          "name": "CVE-2025-46752",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-46752"
        },
        {
          "name": "CVE-2025-31365",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31365"
        },
        {
          "name": "CVE-2025-49201",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-49201"
        },
        {
          "name": "CVE-2025-54822",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54822"
        },
        {
          "name": "CVE-2025-57741",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-57741"
        },
        {
          "name": "CVE-2025-58903",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-58903"
        },
        {
          "name": "CVE-2025-31514",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31514"
        },
        {
          "name": "CVE-2025-25253",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-25253"
        },
        {
          "name": "CVE-2024-33507",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-33507"
        },
        {
          "name": "CVE-2025-25255",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-25255"
        },
        {
          "name": "CVE-2023-46718",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-46718"
        },
        {
          "name": "CVE-2025-47890",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-47890"
        },
        {
          "name": "CVE-2025-54988",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54988"
        },
        {
          "name": "CVE-2024-26008",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-26008"
        },
        {
          "name": "CVE-2025-25252",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-25252"
        },
        {
          "name": "CVE-2024-48891",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-48891"
        },
        {
          "name": "CVE-2025-59921",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-59921"
        },
        {
          "name": "CVE-2025-53951",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-53951"
        },
        {
          "name": "CVE-2025-53950",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-53950"
        },
        {
          "name": "CVE-2025-58324",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-58324"
        },
        {
          "name": "CVE-2025-53845",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-53845"
        },
        {
          "name": "CVE-2024-50571",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-50571"
        },
        {
          "name": "CVE-2025-46774",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-46774"
        },
        {
          "name": "CVE-2025-31366",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31366"
        },
        {
          "name": "CVE-2025-57716",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-57716"
        },
        {
          "name": "CVE-2024-47569",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-47569"
        },
        {
          "name": "CVE-2025-22258",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-22258"
        },
        {
          "name": "CVE-2025-57740",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-57740"
        },
        {
          "name": "CVE-2025-54973",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54973"
        },
        {
          "name": "CVE-2025-54658",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54658"
        }
      ],
      "initial_release_date": "2025-10-15T00:00:00",
      "last_revision_date": "2025-10-15T00:00:00",
      "links": [],
      "reference": "CERTFR-2025-AVI-0871",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2025-10-15T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "D\u00e9ni de service \u00e0 distance"
        },
        {
          "description": "Injection de code indirecte \u00e0 distance (XSS)"
        },
        {
          "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
        },
        {
          "description": "Contournement de la politique de s\u00e9curit\u00e9"
        },
        {
          "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
        },
        {
          "description": "\u00c9l\u00e9vation de privil\u00e8ges"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Fortinet. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Fortinet",
      "vendor_advisories": [
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-372",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-372"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-412",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-412"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-228",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-228"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-280",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-280"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-685",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-685"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-452",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-452"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-487",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-487"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-639",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-639"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-037",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-037"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-684",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-684"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-354",
          "url": "https://www.fortiguard.com/psirt/FG-IR-23-354"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-041",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-041"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-198",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-198"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-160",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-160"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-361",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-361"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-861",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-861"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-542",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-542"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-771",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-771"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-010",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-010"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-378",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-378"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-442",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-442"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-664",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-664"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-756",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-756"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-126",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-126"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-628",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-628"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-457",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-457"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-062",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-062"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-546",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-546"
        },
        {
          "published_at": "2025-10-14",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-653",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-653"
        }
      ]
    }

    CERTFR-2025-AVI-0679

    Vulnerability from certfr_avis - Published: 2025-08-13 - Updated: 2025-08-13

    De multiples vulnérabilités ont été découvertes dans les produits Fortinet. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et un déni de service à distance.

    Fortinet indique avoir connaissance de code d'exploitation public pour la vulnérabilité CVE-2025-25256.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    Fortinet FortiOS FortiOS versions 7.6.x antérieures à 7.6.3
    Fortinet FortiRecorder FortiRecorder versions antérieures à 7.0.5
    Fortinet FortiMail FortiMail versions antérieures à 7.4.4
    Fortinet FortiSIEM FortiSIEM versions 7.1.x antérieures à 7.1.8
    Fortinet FortiManager FortiManager versions 7.6.x antérieures à 7.6.2
    Fortinet FortiManager FortiManager versions antérieures à 7.0.14
    Fortinet FortiNDR FortiNDR versions antérieures à 7.4.7
    Fortinet FortiNDR FortiNDR versions 7.6.x antérieures à 7.6.1
    Fortinet FortiManager FortiManager versions 7.4.x antérieures à 7.4.7
    Fortinet FortiWeb FortiWeb versions 7.6.x antérieures à 7.6.4
    Fortinet FortiManager FortiManager versions 7.2.x antérieures à 7.2.10
    Fortinet FortiWeb FortiWeb versions 7.2.x antérieures à 7.2.11
    Fortinet FortiVoice FortiVoice versions 7.0.x antérieures à 7.0.5
    Fortinet FortiSOAR FortiSOAR versions antérieures à 7.5.2
    Fortinet FortiOS FortiOS versions antérieures à 7.4.8
    Fortinet FortiPAM FortiPAM versions 1.5.x antérieures à 1.5.1
    Fortinet FortiCamera FortiCamera versions 2.1.x toutes versions
    Fortinet FortiWeb FortiWeb versions 7.0.x antérieures à 7.0.11
    Fortinet FortiPAM FortiPAM versions antérieures à 1.4.3
    Fortinet FortiSwitchManager FortiSwitchManager versions 7.2.x antérieures à 7.2.4
    Fortinet FortiWeb FortiWeb versions 7.4.x antérieures à 7.4.9
    Fortinet FortiManager FortiManager Cloud versions antérieures à 7.2.10
    Fortinet FortiSwitchManager FortiSwitchManager versions 7.0.x antérieures à 7.0.4
    Fortinet FortiMail FortiMail versions 7.6.x antérieures à 7.6.2
    Fortinet FortiProxy FortiProxy versions 7.6.x antérieures à 7.6.3
    Fortinet FortiSIEM FortiSIEM versions 7.3.x antérieures à 7.3.2
    Fortinet FortiSIEM FortiSIEM versions 7.2.x antérieures à 7.2.6
    Fortinet FortiSIEM FortiSIEM versions antérieures à 6.7.10
    Fortinet FortiADC FortiADC versions 7.2.x antérieures à 7.2.1
    Fortinet FortiSIEM FortiSIEM versions 7.0.x antérieures à 7.0.4
    Fortinet FortiCamera FortiCamera versions antérieures à 2.0.1
    Fortinet FortiManager FortiManager Cloud versions 7.4.x antérieures à 7.4.6
    Fortinet FortiProxy FortiProxy versions antérieures à 7.4.4
    Fortinet FortiVoice FortiVoice versions antérieures à 6.4.10
    Fortinet FortiADC FortiADC versions antérieures à 7.1.2
    Fortinet FortiRecorder FortiRecorder versions 7.2.x antérieures à 7.2.2
    Fortinet FortiSOAR FortiSOAR versions 7.6.x antérieures à 7.6.2
    References

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "FortiOS versions 7.6.x ant\u00e9rieures \u00e0 7.6.3",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiRecorder versions ant\u00e9rieures \u00e0 7.0.5",
          "product": {
            "name": "FortiRecorder",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiMail versions ant\u00e9rieures \u00e0 7.4.4",
          "product": {
            "name": "FortiMail",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSIEM versions 7.1.x ant\u00e9rieures \u00e0 7.1.8",
          "product": {
            "name": "FortiSIEM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions 7.6.x ant\u00e9rieures \u00e0 7.6.2",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions ant\u00e9rieures \u00e0 7.0.14",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiNDR versions ant\u00e9rieures \u00e0 7.4.7",
          "product": {
            "name": "FortiNDR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiNDR versions 7.6.x ant\u00e9rieures \u00e0 7.6.1",
          "product": {
            "name": "FortiNDR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions 7.4.x ant\u00e9rieures \u00e0 7.4.7",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.6.x ant\u00e9rieures \u00e0 7.6.4",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager versions 7.2.x ant\u00e9rieures \u00e0 7.2.10",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.2.x ant\u00e9rieures \u00e0 7.2.11",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiVoice versions 7.0.x ant\u00e9rieures \u00e0 7.0.5",
          "product": {
            "name": "FortiVoice",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR versions ant\u00e9rieures \u00e0 7.5.2",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiOS versions ant\u00e9rieures \u00e0 7.4.8",
          "product": {
            "name": "FortiOS",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiPAM versions 1.5.x ant\u00e9rieures \u00e0 1.5.1",
          "product": {
            "name": "FortiPAM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiCamera versions 2.1.x toutes versions",
          "product": {
            "name": "FortiCamera",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.0.x ant\u00e9rieures \u00e0 7.0.11",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiPAM versions ant\u00e9rieures \u00e0 1.4.3",
          "product": {
            "name": "FortiPAM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSwitchManager versions 7.2.x ant\u00e9rieures \u00e0 7.2.4",
          "product": {
            "name": "FortiSwitchManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiWeb versions 7.4.x ant\u00e9rieures \u00e0 7.4.9",
          "product": {
            "name": "FortiWeb",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager Cloud versions  ant\u00e9rieures \u00e0 7.2.10",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSwitchManager versions 7.0.x ant\u00e9rieures \u00e0 7.0.4",
          "product": {
            "name": "FortiSwitchManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiMail versions 7.6.x ant\u00e9rieures \u00e0 7.6.2",
          "product": {
            "name": "FortiMail",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy versions 7.6.x ant\u00e9rieures \u00e0 7.6.3",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSIEM versions 7.3.x ant\u00e9rieures \u00e0 7.3.2",
          "product": {
            "name": "FortiSIEM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSIEM versions 7.2.x ant\u00e9rieures \u00e0 7.2.6",
          "product": {
            "name": "FortiSIEM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSIEM versions ant\u00e9rieures \u00e0 6.7.10",
          "product": {
            "name": "FortiSIEM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiADC versions 7.2.x ant\u00e9rieures \u00e0 7.2.1",
          "product": {
            "name": "FortiADC",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSIEM versions 7.0.x ant\u00e9rieures \u00e0 7.0.4",
          "product": {
            "name": "FortiSIEM",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiCamera versions ant\u00e9rieures \u00e0 2.0.1",
          "product": {
            "name": "FortiCamera",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiManager Cloud versions 7.4.x ant\u00e9rieures \u00e0 7.4.6",
          "product": {
            "name": "FortiManager",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiProxy versions ant\u00e9rieures \u00e0 7.4.4",
          "product": {
            "name": "FortiProxy",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiVoice versions ant\u00e9rieures \u00e0 6.4.10",
          "product": {
            "name": "FortiVoice",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiADC versions ant\u00e9rieures \u00e0 7.1.2",
          "product": {
            "name": "FortiADC",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiRecorder versions 7.2.x ant\u00e9rieures \u00e0 7.2.2",
          "product": {
            "name": "FortiRecorder",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        },
        {
          "description": "FortiSOAR versions 7.6.x ant\u00e9rieures \u00e0 7.6.2",
          "product": {
            "name": "FortiSOAR",
            "vendor": {
              "name": "Fortinet",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2025-25248",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-25248"
        },
        {
          "name": "CVE-2025-47857",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-47857"
        },
        {
          "name": "CVE-2025-32766",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-32766"
        },
        {
          "name": "CVE-2024-48892",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-48892"
        },
        {
          "name": "CVE-2025-53744",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-53744"
        },
        {
          "name": "CVE-2024-52964",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-52964"
        },
        {
          "name": "CVE-2025-49813",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-49813"
        },
        {
          "name": "CVE-2025-25256",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-25256"
        },
        {
          "name": "CVE-2025-52970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52970"
        },
        {
          "name": "CVE-2025-27759",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-27759"
        },
        {
          "name": "CVE-2025-32932",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-32932"
        },
        {
          "name": "CVE-2024-26009",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-26009"
        },
        {
          "name": "CVE-2024-40588",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40588"
        },
        {
          "name": "CVE-2023-45584",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-45584"
        }
      ],
      "initial_release_date": "2025-08-13T00:00:00",
      "last_revision_date": "2025-08-13T00:00:00",
      "links": [],
      "reference": "CERTFR-2025-AVI-0679",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2025-08-13T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "D\u00e9ni de service \u00e0 distance"
        },
        {
          "description": "Injection de code indirecte \u00e0 distance (XSS)"
        },
        {
          "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
        },
        {
          "description": "Ex\u00e9cution de code arbitraire"
        },
        {
          "description": "Contournement de la politique de s\u00e9curit\u00e9"
        },
        {
          "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
        },
        {
          "description": "\u00c9l\u00e9vation de privil\u00e8ges"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Fortinet. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.\n\nFortinet indique avoir connaissance de code d\u0027exploitation public pour la vuln\u00e9rabilit\u00e9 CVE-2025-25256.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Fortinet",
      "vendor_advisories": [
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-501",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-501"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-421",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-421"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-173",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-173"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-152",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-152"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-042",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-042"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-150",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-150"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-383",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-383"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-364",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-364"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-253",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-253"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-309",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-309"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-513",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-513"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-25-448",
          "url": "https://www.fortiguard.com/psirt/FG-IR-25-448"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-473",
          "url": "https://www.fortiguard.com/psirt/FG-IR-24-473"
        },
        {
          "published_at": "2025-08-12",
          "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-209",
          "url": "https://www.fortiguard.com/psirt/FG-IR-23-209"
        }
      ]
    }

    CVE-2025-61624 (GCVE-0-2025-61624)

    Vulnerability from nvd – Published: 2026-04-14 15:39 – Updated: 2026-05-12 12:08
    VLAI KEVIntel
    Summary
    An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') [CWE-22] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.7.0, FortiPAM 1.6 all versions, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.6.0 through 7.6.4, FortiProxy 7.4.0 through 7.4.11, FortiProxy 7.2 all versions, FortiProxy 7.0 all versions, FortiSwitchManager 7.2.0 through 7.2.7, FortiSwitchManager 7.0.0 through 7.0.6 may allow an authenticated attacker with admin profile and at least read-write permissions to write or delete arbitrary files via specific CLI commands.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Escalation of privilege
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.4 (semver)
    Affected: 7.4.0 , ≤ 7.4.9 (semver)
    Affected: 7.2.0 , ≤ 7.2.13 (semver)
    Affected: 7.0.0 , ≤ 7.0.19 (semver)
    Affected: 6.4.0 , ≤ 6.4.16 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.6.0 , ≤ 7.6.4 (semver)
    Affected: 7.4.0 , ≤ 7.4.11 (semver)
    Affected: 7.2.0 , ≤ 7.2.16 (semver)
    Affected: 7.0.0 , ≤ 7.0.23 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.6.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.23:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSwitchManager Affected: 7.2.0 , ≤ 7.2.7 (semver)
    Affected: 7.0.0 , ≤ 7.0.6 (semver)
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.7.0
    Affected: 1.6.0 , ≤ 1.6.2 (semver)
    Affected: 1.5.0 , ≤ 1.5.1 (semver)
    Affected: 1.4.0 , ≤ 1.4.3 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.7.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Siemens RUGGEDCOM APE1808 Affected: 0 , < * (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-61624",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-14T16:16:14.420673Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-14T16:46:14.073Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM APE1808",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-12T12:08:31.410Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-975644.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.4",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.9",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.13",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.19",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.16",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.6.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.23:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.4",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.11",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.16",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.23",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSwitchManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.7",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.6",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.7.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.7.0"
                },
                {
                  "lessThanOrEqual": "1.6.2",
                  "status": "affected",
                  "version": "1.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.5.1",
                  "status": "affected",
                  "version": "1.5.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.4.3",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) [CWE-22] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.7.0, FortiPAM 1.6 all versions, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.6.0 through 7.6.4, FortiProxy 7.4.0 through 7.4.11, FortiProxy 7.2 all versions, FortiProxy 7.0 all versions, FortiSwitchManager 7.2.0 through 7.2.7, FortiSwitchManager 7.0.0 through 7.0.6 may allow an authenticated attacker with admin profile and at least read-write permissions to write or delete arbitrary files via specific CLI commands."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H/E:P/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Escalation of privilege",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-14T15:39:51.445Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-26-122",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-26-122"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to upcoming  FortiOS version 8.0.0 or above\nUpgrade to FortiOS version 7.6.5 or above\nUpgrade to FortiOS version 7.4.10 or above\nUpgrade to FortiProxy version 7.6.5 or above\nUpgrade to FortiProxy version 7.4.12 or above\nUpgrade to FortiPAM version 1.8.0 or above\nUpgrade to FortiPAM version 1.7.1 or above\nFortinet remediated this issue in FortiSASE version 25.4.b and hence customers do not need to perform any action.\nUpgrade to upcoming  FortiSwitch version 8.0.0 or above\nUpgrade to FortiSwitch version 7.6.5 or above\nUpgrade to FortiSwitch version 7.4.9 or above\nUpgrade to FortiSwitchManager version 7.2.8 or above\nUpgrade to FortiSwitchManager version 7.0.7 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-61624",
        "datePublished": "2026-04-14T15:39:51.445Z",
        "dateReserved": "2025-09-29T07:36:48.603Z",
        "dateUpdated": "2026-05-12T12:08:31.410Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-47570 (GCVE-0-2024-47570)

    Vulnerability from nvd – Published: 2025-12-09 17:20 – Updated: 2026-02-26 16:56
    VLAI
    Summary
    An insertion of sensitive information into log file vulnerability [CWE-532] in FortiOS 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0 all versions; FortiProxy 7.4.0 through 7.4.3, 7.2.0 through 7.2.11; FortiPAM 1.4 all versions, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions and FortiSRA 1.4 all versions may allow a read-only administrator to retrieve API tokens of other administrators via observing REST API logs, if REST API logging is enabled (non-default configuration).
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-532 - Escalation of privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiSASE Affected: 24.1.10
        cpe:2.3:a:fortinet:fortisase:24.1.10:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.11 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSRA Affected: 1.4.0 , ≤ 1.4.3 (semver)
        cpe:2.3:a:fortinet:fortisra:1.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.4.0 , ≤ 1.4.3 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.7 (semver)
    Affected: 7.0.4 , ≤ 7.0.18 (semver)
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-47570",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-12-10T04:57:25.858238Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T16:56:58.331Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortisase:24.1.10:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSASE",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "24.1.10"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.11",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortisra:1.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSRA",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "1.4.3",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "1.4.3",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.7",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.18",
                  "status": "affected",
                  "version": "7.0.4",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An insertion of sensitive information into log file vulnerability [CWE-532] in FortiOS 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0 all versions; FortiProxy 7.4.0 through 7.4.3, 7.2.0 through 7.2.11; FortiPAM 1.4 all versions, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions and FortiSRA 1.4 all versions may allow a read-only administrator to retrieve API tokens of other administrators via observing REST API logs, if REST API logging is enabled (non-default configuration)."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-532",
                  "description": "Escalation of privilege",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:18:59.532Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-268",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-268"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Fortinet remediated this issue in FortiSASE version 24.1.c and hence customers do not need to perform any action.\nUpgrade to FortiProxy version 7.4.4 or above\nUpgrade to FortiProxy version 7.2.12 or above\nUpgrade to FortiSRA version 1.6.0 or above\nUpgrade to FortiSRA version 1.5.0 or above\nUpgrade to FortiPAM version 1.6.0 or above\nUpgrade to FortiPAM version 1.5.0 or above\nUpgrade to FortiOS version 7.6.0 or above\nUpgrade to FortiOS version 7.4.4 or above\nUpgrade to FortiOS version 7.2.8 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2024-47570",
        "datePublished": "2025-12-09T17:20:42.499Z",
        "dateReserved": "2024-09-27T16:19:24.136Z",
        "dateUpdated": "2026-02-26T16:56:58.331Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-61713 (GCVE-0-2025-61713)

    Vulnerability from nvd – Published: 2025-11-18 17:01 – Updated: 2026-02-10 07:24
    VLAI
    Summary
    A Cleartext Storage of Sensitive Information in Memory vulnerability [CWE-316] in Fortinet FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions may allow an authenticated attacker with read-write admin privileges to the CLI to obtain other administrators' credentials via diagnose commands.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiPAM Affected: 1.6.0
    Affected: 1.5.0 , ≤ 1.5.1 (semver)
    Affected: 1.4.0 , ≤ 1.4.3 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-61713",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-18T19:10:28.194971Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-18T19:10:33.592Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.6.0"
                },
                {
                  "lessThanOrEqual": "1.5.1",
                  "status": "affected",
                  "version": "1.5.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.4.3",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A Cleartext Storage of Sensitive Information in Memory vulnerability [CWE-316] in Fortinet FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions may allow an authenticated attacker with read-write admin privileges to the CLI to obtain other administrators\u0027 credentials via diagnose commands."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 3.8,
                "baseSeverity": "LOW",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-316",
                  "description": "Information disclosure",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-10T07:24:09.052Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-25-789",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-25-789"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiPAM version 1.7.0 or above\nUpgrade to FortiPAM version 1.6.1 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-61713",
        "datePublished": "2025-11-18T17:01:18.529Z",
        "dateReserved": "2025-09-30T14:50:57.841Z",
        "dateUpdated": "2026-02-10T07:24:09.052Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-54821 (GCVE-0-2025-54821)

    Vulnerability from nvd – Published: 2025-11-18 17:01 – Updated: 2026-06-23 12:26
    VLAI
    Summary
    An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.11, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiSASE 25.2.91 may allow an authenticated administrator to bypass the trusted host policy via crafted CLI command.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Escalation of privilege
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiPAM Affected: 1.6.0
    Affected: 1.5.0 , ≤ 1.5.1 (semver)
    Affected: 1.4.0 , ≤ 1.4.3 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSASE Affected: 25.2.91
        cpe:2.3:a:fortinet:fortisase:25.2.91:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.3 (semver)
    Affected: 7.4.0 , ≤ 7.4.11 (semver)
    Affected: 7.2.0 , ≤ 7.2.13 (semver)
    Affected: 7.0.0 , ≤ 7.0.19 (semver)
    Affected: 6.4.0 , ≤ 6.4.16 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Siemens RUGGEDCOM APE1808 Affected: 0 , < * (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-54821",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-18T20:04:52.328701Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-18T20:04:58.245Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM APE1808",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-09T09:02:34.143Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-864900.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.6.0"
                },
                {
                  "lessThanOrEqual": "1.5.1",
                  "status": "affected",
                  "version": "1.5.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.4.3",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortisase:25.2.91:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSASE",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "25.2.91"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.3",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.11",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.13",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.19",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.16",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.11, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiSASE 25.2.91 may allow an authenticated administrator to bypass the trusted host policy via crafted CLI command."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 1.8,
                "baseSeverity": "LOW",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:R",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-269",
                  "description": "Escalation of privilege",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-23T12:26:16.355Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-25-545",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-25-545"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Fortinet remediated this issue in FortiSASE version 25.3.b and hence customers do not need to perform any action.\nUpgrade to FortiOS version 8.0.0 or above\nUpgrade to FortiOS version 7.6.4 or above\nUpgrade to FortiOS version 7.4.12 or above\nUpgrade to FortiProxy version 7.6.4 or above\nUpgrade to upcoming  FortiProxy version 7.4.14 or above\nUpgrade to FortiPAM version 1.7.0 or above\nUpgrade to FortiPAM version 1.6.1 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-54821",
        "datePublished": "2025-11-18T17:01:22.231Z",
        "dateReserved": "2025-07-30T08:31:12.197Z",
        "dateUpdated": "2026-06-23T12:26:16.355Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-57740 (GCVE-0-2025-57740)

    Vulnerability from nvd – Published: 2025-10-14 15:22 – Updated: 2026-06-09 09:02
    VLAI
    Summary
    An Heap-based Buffer Overflow vulnerability [CWE-122] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.0 all versions, 6.4 all versions; FortiPAM version 1.5.0, version 1.4.2 and below, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions and FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all versions, 7.0 all versions RDP bookmark connection may allow an authenticated user to execute unauthorized code via crafted requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-122 - Execute unauthorized code or commands
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiPAM Affected: 1.5.0
    Affected: 1.4.0 , ≤ 1.4.2 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.15 (semver)
    Affected: 7.0.0 , ≤ 7.0.22 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.7 (semver)
    Affected: 7.2.0 , ≤ 7.2.10 (semver)
    Affected: 7.0.0 , ≤ 7.0.18 (semver)
    Affected: 6.4.0 , ≤ 6.4.16 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Siemens RUGGEDCOM APE1808 Affected: 0 , < * (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-57740",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-16T03:57:11.609008Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:47:35.770Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM APE1808",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-09T09:02:35.554Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-864900.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.0"
                },
                {
                  "lessThanOrEqual": "1.4.2",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.15",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.22",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.7",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.10",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.18",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.16",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An Heap-based Buffer Overflow vulnerability [CWE-122] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.0 all versions, 6.4 all versions; FortiPAM version 1.5.0, version 1.4.2 and below, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions and FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all versions, 7.0 all versions RDP bookmark connection may allow an authenticated user to execute unauthorized code via crafted requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-122",
                  "description": "Execute unauthorized code or commands",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:19:39.340Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-25-756",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-25-756"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiPAM version 1.5.1 or above\nUpgrade to FortiPAM version 1.4.3 or above\nUpgrade to FortiProxy version 7.6.3 or above\nUpgrade to FortiProxy version 7.4.4 or above\nUpgrade to FortiOS version 7.6.3 or above\nUpgrade to FortiOS version 7.4.8 or above\nUpgrade to FortiOS version 7.2.11 or above\nUpgrade to FortiSASE-Sovereign version 25.2 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-57740",
        "datePublished": "2025-10-14T15:22:54.733Z",
        "dateReserved": "2025-08-19T12:04:48.437Z",
        "dateUpdated": "2026-06-09T09:02:35.554Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-49201 (GCVE-0-2025-49201)

    Vulnerability from nvd – Published: 2025-10-14 15:22 – Updated: 2026-01-14 09:18
    VLAI
    Summary
    A weak authentication vulnerability in Fortinet FortiPAM 1.5.0, FortiPAM 1.4.0 through 1.4.2, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiSwitchManager 7.2.0 through 7.2.4 allows attacker to execute unauthorized code or commands via specially crafted http requests
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1390 - Execute unauthorized code or commands
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiPAM Affected: 1.5.0
    Affected: 1.4.0 , ≤ 1.4.2 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSwitchManager Affected: 7.2.0 , ≤ 7.2.4 (semver)
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-49201",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-15T20:49:41.369004Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-15T20:49:54.110Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.0"
                },
                {
                  "lessThanOrEqual": "1.4.2",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSwitchManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.4",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A weak authentication vulnerability in Fortinet FortiPAM 1.5.0, FortiPAM 1.4.0 through 1.4.2, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiSwitchManager 7.2.0 through 7.2.4 allows attacker to execute unauthorized code or commands via specially crafted http requests"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:R",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1390",
                  "description": "Execute unauthorized code or commands",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:18:05.302Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-25-010",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-25-010"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiPAM version 1.6.0 or above\nUpgrade to FortiPAM version 1.5.1 or above\nUpgrade to FortiPAM version 1.4.3 or above\nUpgrade to FortiSwitchManager version 7.2.5 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-49201",
        "datePublished": "2025-10-14T15:22:44.720Z",
        "dateReserved": "2025-06-03T07:46:08.521Z",
        "dateUpdated": "2026-01-14T09:18:05.302Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-25253 (GCVE-0-2025-25253)

    Vulnerability from nvd – Published: 2025-10-14 15:22 – Updated: 2026-06-09 09:02
    VLAI
    Summary
    An Improper Validation of Certificate with Host Mismatch vulnerability [CWE-297] in FortiProxy version 7.6.1 and below, version 7.4.8 and below, 7.2 all versions, 7.0 all versions and FortiOS version 7.6.2 and below, version 7.4.8 and below, 7.2 all versions, 7.0 all versions ZTNA proxy may allow an unauthenticated attacker in a man-in-the middle position to intercept and tamper with connections to the ZTNA proxy
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiProxy Affected: 7.6.0 , ≤ 7.6.1 (semver)
    Affected: 7.4.0 , ≤ 7.4.8 (semver)
    Affected: 7.2.0 , ≤ 7.2.15 (semver)
    Affected: 7.0.0 , ≤ 7.0.22 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.8 (semver)
    Affected: 7.2.0 , ≤ 7.2.12 (semver)
    Affected: 7.0.0 , ≤ 7.0.18 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.4.1
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Siemens RUGGEDCOM APE1808 Affected: 0 , < * (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-25253",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-16T03:57:12.627770Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:47:34.900Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM APE1808",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-09T09:02:11.986Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-864900.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.1",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.8",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.15",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.22",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.8",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.12",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.18",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.4.1"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An Improper Validation of Certificate with Host Mismatch vulnerability [CWE-297] in FortiProxy version 7.6.1 and below, version 7.4.8 and below, 7.2 all versions, 7.0 all versions and FortiOS version 7.6.2 and below, version 7.4.8 and below, 7.2 all versions, 7.0 all versions ZTNA proxy may allow an unauthenticated attacker in a man-in-the middle position to intercept and tamper with connections to the ZTNA proxy"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-297",
                  "description": "Information disclosure",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:18:23.226Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-457",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-457"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiProxy version 7.6.2 or above\nUpgrade to FortiProxy version 7.4.9 or above\nUpgrade to FortiOS version 7.6.3 or above\nUpgrade to FortiOS version 7.4.9 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-25253",
        "datePublished": "2025-10-14T15:22:56.370Z",
        "dateReserved": "2025-02-05T13:31:18.867Z",
        "dateUpdated": "2026-06-09T09:02:11.986Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-22258 (GCVE-0-2025-22258)

    Vulnerability from nvd – Published: 2025-10-14 15:22 – Updated: 2026-02-26 17:47
    VLAI
    Summary
    A heap-based buffer overflow in Fortinet FortiSRA 1.5.0, 1.4.0 through 1.4.2, FortiPAM 1.5.0, 1.4.0 through 1.4.2, 1.3.0 through 1.3.1, 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiProxy 7.6.0 through 7.6.1, 7.4.0 through 7.4.7, FortiOS 7.6.0 through 7.6.2, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10, 7.0.2 through 7.0.16, FortiSwitchManager 7.2.1 through 7.2.5 allows attackers to escalate their privilege via specially crafted http requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-122 - Escalation of privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiPAM Affected: 1.5.0
    Affected: 1.4.0 , ≤ 1.4.2 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.6 (semver)
    Affected: 7.2.0 , ≤ 7.2.10 (semver)
    Affected: 7.0.2 , ≤ 7.0.16 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSRA Affected: 1.5.0
    Affected: 1.4.0 , ≤ 1.4.2 (semver)
        cpe:2.3:a:fortinet:fortisra:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.6.0 , ≤ 7.6.1 (semver)
    Affected: 7.4.0 , ≤ 7.4.7 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSwitchManager Affected: 7.2.1 , ≤ 7.2.5 (semver)
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-22258",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-17T03:55:17.613485Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:47:34.153Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.0"
                },
                {
                  "lessThanOrEqual": "1.4.2",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.6",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.10",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.16",
                  "status": "affected",
                  "version": "7.0.2",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortisra:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSRA",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.0"
                },
                {
                  "lessThanOrEqual": "1.4.2",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.1",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.7",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSwitchManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.5",
                  "status": "affected",
                  "version": "7.2.1",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A heap-based buffer overflow in Fortinet FortiSRA 1.5.0, 1.4.0 through 1.4.2, FortiPAM 1.5.0, 1.4.0 through 1.4.2, 1.3.0 through 1.3.1, 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiProxy 7.6.0 through 7.6.1, 7.4.0 through 7.4.7, FortiOS 7.6.0 through 7.6.2, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10, 7.0.2 through 7.0.16, FortiSwitchManager 7.2.1 through 7.2.5 allows attackers to escalate their privilege via specially crafted http requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 5.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H/E:P/RL:W/RC:R",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-122",
                  "description": "Escalation of privilege",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:17:36.808Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-546",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-546"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiPAM version 1.6.0 or above\nUpgrade to FortiPAM version 1.5.1 or above\nUpgrade to FortiPAM version 1.4.3 or above\nFortinet remediated this issue in FortiSASE version 25.1.b and hence customers do not need to perform any action.\nUpgrade to FortiOS version 7.6.3 or above\nUpgrade to FortiOS version 7.4.7 or above\nUpgrade to FortiOS version 7.2.11 or above\nUpgrade to FortiOS version 7.0.17 or above\nUpgrade to FortiSRA version 1.6.0 or above\nUpgrade to FortiSRA version 1.5.1 or above\nUpgrade to FortiSRA version 1.4.3 or above\nUpgrade to FortiProxy version 7.6.2 or above\nUpgrade to FortiProxy version 7.4.8 or above\nUpgrade to FortiSwitchManager version 7.2.6 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-22258",
        "datePublished": "2025-10-14T15:22:56.720Z",
        "dateReserved": "2025-01-02T10:21:04.198Z",
        "dateUpdated": "2026-02-26T17:47:34.153Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-47569 (GCVE-0-2024-47569)

    Vulnerability from nvd – Published: 2025-10-14 15:23 – Updated: 2026-02-10 07:22
    VLAI
    Summary
    A insertion of sensitive information into sent data vulnerability in Fortinet FortiMail 7.4.0 through 7.4.2, FortiMail 7.2.0 through 7.2.6, FortiMail 7.0 all versions, FortiManager 7.6.0 through 7.6.1, FortiManager 7.4.1 through 7.4.3, FortiManager Cloud 7.4.1 through 7.4.3, FortiNDR 7.6.0 through 7.6.1, FortiNDR 7.4.0 through 7.4.8, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiNDR 1.5 all versions, FortiOS 7.6.0, FortiOS 7.4.0 through 7.4.4, FortiOS 7.2.0 through 7.2.8, FortiOS 7.0.0 through 7.0.15, FortiOS 6.4.0 through 6.4.15, FortiOS 6.2 all versions, FortiOS 6.0 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.4, FortiProxy 7.2.0 through 7.2.10, FortiProxy 7.0 all versions, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1 all versions, FortiProxy 1.0 all versions, FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiTester 7.4.0 through 7.4.2, FortiTester 7.3 all versions, FortiTester 7.2 all versions, FortiTester 7.1 all versions, FortiTester 7.0 all versions, FortiTester 4.2 all versions, FortiVoice 7.0.0 through 7.0.4, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0.7 through 6.0.12, FortiWeb 7.6.0, FortiWeb 7.4.0 through 7.4.4, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions, FortiWeb 6.4 all versions allows attacker to disclose sensitive information via specially crafted packets.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiManager Cloud Affected: 7.4.1 , ≤ 7.4.3 (semver)
        cpe:2.3:a:fortinet:fortimanagercloud:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimanagercloud:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimanagercloud:7.4.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiTester Affected: 7.4.0 , ≤ 7.4.2 (semver)
    Affected: 7.3.0 , ≤ 7.3.2 (semver)
    Affected: 7.2.0 , ≤ 7.2.3 (semver)
    Affected: 7.1.0 , ≤ 7.1.1 (semver)
    Affected: 7.0.0
    Affected: 4.2.0 , ≤ 4.2.1 (semver)
        cpe:2.3:a:fortinet:fortitester:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.3.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.3.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.3.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:4.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:4.2.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiNDR Affected: 7.6.0 , ≤ 7.6.1 (semver)
    Affected: 7.4.0 , ≤ 7.4.8 (semver)
    Affected: 7.2.0 , ≤ 7.2.5 (semver)
    Affected: 7.1.0 , ≤ 7.1.1 (semver)
    Affected: 7.0.0 , ≤ 7.0.7 (semver)
    Affected: 1.5.0 , ≤ 1.5.3 (semver)
        cpe:2.3:a:fortinet:fortindr:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiManager Affected: 7.4.1 , ≤ 7.4.3 (semver)
        cpe:2.3:o:fortinet:fortimanager:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortimanager:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortimanager:7.4.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.6.0
    Affected: 7.4.0 , ≤ 7.4.4 (semver)
    Affected: 7.2.0 , ≤ 7.2.8 (semver)
    Affected: 7.0.0 , ≤ 7.0.15 (semver)
    Affected: 6.4.0 , ≤ 6.4.15 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiRecorder Affected: 7.2.0 , ≤ 7.2.1 (semver)
    Affected: 7.0.0 , ≤ 7.0.4 (semver)
        cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.4.0 , ≤ 7.4.4 (semver)
    Affected: 7.2.0 , ≤ 7.2.10 (semver)
    Affected: 7.0.0 , ≤ 7.0.23 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.23:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiMail Affected: 7.4.0 , ≤ 7.4.2 (semver)
    Affected: 7.2.0 , ≤ 7.2.6 (semver)
    Affected: 7.0.0 , ≤ 7.0.9 (semver)
        cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiWeb Affected: 7.6.0
    Affected: 7.4.0 , ≤ 7.4.4 (semver)
    Affected: 7.2.0 , ≤ 7.2.12 (semver)
    Affected: 7.0.0 , ≤ 7.0.12 (semver)
    Affected: 6.4.0 , ≤ 6.4.3 (semver)
        cpe:2.3:a:fortinet:fortiweb:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiVoice Affected: 7.0.0 , ≤ 7.0.4 (semver)
    Affected: 6.4.0 , ≤ 6.4.9 (semver)
    Affected: 6.0.7 , ≤ 6.0.12 (semver)
        cpe:2.3:a:fortinet:fortivoice:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.7:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-47569",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-16T15:31:45.922521Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-16T15:31:53.740Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortimanagercloud:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimanagercloud:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimanagercloud:7.4.1:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiManager Cloud",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.1",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortitester:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.3.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:4.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:4.2.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiTester",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.2",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.3.2",
                  "status": "affected",
                  "version": "7.3.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.3",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.1.1",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "7.0.0"
                },
                {
                  "lessThanOrEqual": "4.2.1",
                  "status": "affected",
                  "version": "4.2.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortindr:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiNDR",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.1",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.8",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.5",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.1.1",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.5.3",
                  "status": "affected",
                  "version": "1.5.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortimanager:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortimanager:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortimanager:7.4.1:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.1",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.6.0"
                },
                {
                  "lessThanOrEqual": "7.4.4",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.8",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.15",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.15",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiRecorder",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.1",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.4",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.23:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.4",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.10",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.23",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiMail",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.2",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.6",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.9",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiweb:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiWeb",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.6.0"
                },
                {
                  "lessThanOrEqual": "7.4.4",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.12",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.12",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.3",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortivoice:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.7:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiVoice",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.4",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.9",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.0.12",
                  "status": "affected",
                  "version": "6.0.7",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A insertion of sensitive information into sent data vulnerability in Fortinet FortiMail 7.4.0 through 7.4.2, FortiMail 7.2.0 through 7.2.6, FortiMail 7.0 all versions, FortiManager 7.6.0 through 7.6.1, FortiManager 7.4.1 through 7.4.3, FortiManager Cloud 7.4.1 through 7.4.3, FortiNDR 7.6.0 through 7.6.1, FortiNDR 7.4.0 through 7.4.8, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiNDR 1.5 all versions, FortiOS 7.6.0, FortiOS 7.4.0 through 7.4.4, FortiOS 7.2.0 through 7.2.8, FortiOS 7.0.0 through 7.0.15, FortiOS 6.4.0 through 6.4.15, FortiOS 6.2 all versions, FortiOS 6.0 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.4, FortiProxy 7.2.0 through 7.2.10, FortiProxy 7.0 all versions, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1 all versions, FortiProxy 1.0 all versions, FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiTester 7.4.0 through 7.4.2, FortiTester 7.3 all versions, FortiTester 7.2 all versions, FortiTester 7.1 all versions, FortiTester 7.0 all versions, FortiTester 4.2 all versions, FortiVoice 7.0.0 through 7.0.4, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0.7 through 6.0.12, FortiWeb 7.6.0, FortiWeb 7.4.0 through 7.4.4, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions, FortiWeb 6.4 all versions allows attacker to disclose sensitive information via specially crafted packets."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:F/RL:U/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-201",
                  "description": "Information disclosure",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-10T07:22:21.025Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-228",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-228"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiManager Cloud version 7.4.4 or above\nUpgrade to FortiTester version 7.6.0 or above\nUpgrade to FortiTester version 7.4.3 or above\nUpgrade to FortiNDR version 7.6.2 or above\nUpgrade to FortiNDR version 7.4.9 or above\nUpgrade to FortiManager version 7.6.2 or above\nUpgrade to FortiManager version 7.4.4 or above\nUpgrade to FortiPAM version 1.5.0 or above\nUpgrade to FortiPAM version 1.4.0 or above\nFortinet remediated this issue in FortiSASE version 24.3.b and hence customers do not need to perform any action.\nUpgrade to FortiOS version 7.6.1 or above\nUpgrade to FortiOS version 7.4.5 or above\nUpgrade to FortiOS version 7.2.9 or above\nUpgrade to FortiOS version 7.0.16 or above\nUpgrade to FortiOS version 6.4.16 or above\nUpgrade to FortiRecorder version 7.2.2 or above\nUpgrade to FortiRecorder version 7.0.5 or above\nUpgrade to FortiProxy version 7.4.5 or above\nUpgrade to FortiProxy version 7.2.11 or above\nUpgrade to FortiMail version 7.6.0 or above\nUpgrade to FortiMail version 7.4.3 or above\nUpgrade to FortiMail version 7.2.7 or above\nUpgrade to FortiWeb version 7.6.1 or above\nUpgrade to FortiWeb version 7.4.5 or above\nUpgrade to FortiVoice version 7.2.0 or above\nUpgrade to FortiVoice version 7.0.5 or above\nUpgrade to FortiVoice version 6.4.10 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2024-47569",
        "datePublished": "2025-10-14T15:23:03.965Z",
        "dateReserved": "2024-09-27T16:19:24.136Z",
        "dateUpdated": "2026-02-10T07:22:21.025Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-26008 (GCVE-0-2024-26008)

    Vulnerability from nvd – Published: 2025-10-14 15:23 – Updated: 2026-01-14 09:19
    VLAI
    Summary
    An improper check or handling of exceptional conditions vulnerability [CWE-703] in FortiOS version 7.4.0 through 7.4.3 and before 7.2.7, FortiProxy version 7.4.0 through 7.4.3 and before 7.2.9, FortiPAM before 1.2.0 and FortiSwitchManager version 7.2.0 through 7.2.3 and version 7.0.0 through 7.0.3 fgfm daemon may allow an unauthenticated attacker to repeatedly reset the fgfm connection via crafted SSL encrypted TCP requests.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiProxy Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.9 (semver)
    Affected: 7.0.0 , ≤ 7.0.22 (semver)
    Affected: 2.0.0 , ≤ 2.0.14 (semver)
    Affected: 1.2.0 , ≤ 1.2.13 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.7 (semver)
    Affected: 7.0.0 , ≤ 7.0.18 (semver)
    Affected: 6.4.0 , ≤ 6.4.16 (semver)
    Affected: 6.2.0 , ≤ 6.2.17 (semver)
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSwitchManager Affected: 7.2.0 , ≤ 7.2.3 (semver)
    Affected: 7.0.0 , ≤ 7.0.3 (semver)
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-26008",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-16T17:21:53.267379Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-16T17:21:58.705Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.9",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.22",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "2.0.14",
                  "status": "affected",
                  "version": "2.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.2.13",
                  "status": "affected",
                  "version": "1.2.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.7",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.18",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.16",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.2.17",
                  "status": "affected",
                  "version": "6.2.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSwitchManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.3",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.3",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An improper check or handling of exceptional conditions vulnerability [CWE-703] in FortiOS version 7.4.0 through 7.4.3 and before 7.2.7, FortiProxy version 7.4.0 through 7.4.3 and before 7.2.9, FortiPAM before 1.2.0 and FortiSwitchManager version 7.2.0 through 7.2.3 and version 7.0.0 through 7.0.3 fgfm daemon may allow an unauthenticated attacker to repeatedly reset the fgfm connection via crafted SSL encrypted TCP requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-754",
                  "description": "Denial of service",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:19:16.291Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-041",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-041"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiProxy version 7.4.4 or above\nUpgrade to FortiProxy version 7.2.10 or above\nUpgrade to FortiPAM version 1.4.0 or above\nUpgrade to FortiPAM version 1.3.0 or above\nUpgrade to FortiOS version 7.6.0 or above\nUpgrade to FortiOS version 7.4.4 or above\nUpgrade to FortiOS version 7.2.8 or above\nUpgrade to FortiSwitchManager version 7.2.4 or above\nUpgrade to FortiSwitchManager version 7.0.4 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2024-26008",
        "datePublished": "2025-10-14T15:23:04.753Z",
        "dateReserved": "2024-02-14T09:18:43.245Z",
        "dateUpdated": "2026-01-14T09:19:16.291Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-25248 (GCVE-0-2025-25248)

    Vulnerability from nvd – Published: 2025-08-12 18:59 – Updated: 2026-06-09 09:02
    VLAI
    Summary
    An Integer Overflow or Wraparound vulnerability [CWE-190] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.2 all versions, 6.4 all versions, FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all versions, 7.0 all versions, 2.0 all versions and FortiPAM version 1.5.0, version 1.4.2 and below, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions SSL-VPN RDP and VNC bookmarks may allow an authenticated user to affect the device SSL-VPN availability via crafted requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.7 (semver)
    Affected: 7.2.0 , ≤ 7.2.10 (semver)
    Affected: 7.0.0 , ≤ 7.0.17 (semver)
    Affected: 6.4.0 , ≤ 6.4.16 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.5.0
    Affected: 1.4.0 , ≤ 1.4.2 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.14 (semver)
    Affected: 7.0.0 , ≤ 7.0.21 (semver)
    Affected: 2.0.0 , ≤ 2.0.14 (semver)
    Create a notification for this product.
    Siemens RUGGEDCOM APE1808 Affected: 0 , < * (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-25248",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-13T19:54:27.772972Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-08-13T20:14:04.480Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM APE1808",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-09T09:02:08.612Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-864900.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.7",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.10",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.17",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.16",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.0"
                },
                {
                  "lessThanOrEqual": "1.4.2",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.14",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.21",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "2.0.14",
                  "status": "affected",
                  "version": "2.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An\u00a0Integer Overflow or Wraparound vulnerability [CWE-190] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.2 all versions, 6.4 all versions, FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all versions, 7.0 all versions, 2.0 all versions and FortiPAM version 1.5.0, version 1.4.2 and below, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions SSL-VPN RDP and VNC bookmarks may allow an authenticated user to affect the device SSL-VPN availability via crafted requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:X/RC:R",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-190",
                  "description": "Denial of service",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-08-12T18:59:39.985Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-364",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-364"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Please upgrade to FortiOS version 7.6.3 or above \nPlease upgrade to FortiOS version 7.4.8 or above \nPlease upgrade to FortiOS version 7.2.11 or above \nPlease upgrade to FortiPAM version 1.5.1 or above \nPlease upgrade to FortiPAM version 1.4.3 or above \nPlease upgrade to FortiProxy version 7.6.3 or above \nPlease upgrade to FortiProxy version 7.4.4 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-25248",
        "datePublished": "2025-08-12T18:59:39.985Z",
        "dateReserved": "2025-02-05T13:31:18.866Z",
        "dateUpdated": "2026-06-09T09:02:08.612Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-26009 (GCVE-0-2024-26009)

    Vulnerability from nvd – Published: 2025-08-12 18:59 – Updated: 2026-04-20 07:54
    VLAI
    Summary
    An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS 6.4.0 through 6.4.15, FortiOS 6.2.0 through 6.2.16, FortiOS 6.0 all versions, FortiPAM 1.2.0, FortiPAM 1.1.0 through 1.1.2, FortiPAM 1.0.0 through 1.0.3, FortiProxy 7.4.0 through 7.4.2, FortiProxy 7.2.0 through 7.2.8, FortiProxy 7.0.0 through 7.0.15, FortiSwitchManager 7.2.0 through 7.2.3, FortiSwitchManager 7.0.0 through 7.0.3 allows an unauthenticated attacker to seize control of a managed device via crafted FGFM requests, if the device is managed by a FortiManager, and if the attacker knows that FortiManager's serial number.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-288 - Execute unauthorized code or commands
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiProxy Affected: 7.4.0 , ≤ 7.4.2 (semver)
    Affected: 7.2.0 , ≤ 7.2.8 (semver)
    Affected: 7.0.0 , ≤ 7.0.15 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 6.4.0 , ≤ 6.4.15 (semver)
    Affected: 6.2.0 , ≤ 6.2.16 (semver)
    Affected: 6.0.0 , ≤ 6.0.18 (semver)
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSwitchManager Affected: 7.2.0 , ≤ 7.2.3 (semver)
    Affected: 7.0.0 , ≤ 7.0.3 (semver)
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-26009",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-13T15:04:27.218508Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:48:57.729Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.2",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.8",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.15",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "6.4.15",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.2.16",
                  "status": "affected",
                  "version": "6.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.0.18",
                  "status": "affected",
                  "version": "6.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSwitchManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.3",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.3",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS 6.4.0 through 6.4.15, FortiOS 6.2.0 through 6.2.16, FortiOS 6.0 all versions, FortiPAM 1.2.0, FortiPAM 1.1.0 through 1.1.2, FortiPAM 1.0.0 through 1.0.3, FortiProxy 7.4.0 through 7.4.2, FortiProxy 7.2.0 through 7.2.8, FortiProxy 7.0.0 through 7.0.15, FortiSwitchManager 7.2.0 through 7.2.3, FortiSwitchManager 7.0.0 through 7.0.3 allows an unauthenticated attacker to seize control of a managed device via crafted FGFM requests, if the device is managed by a FortiManager, and if the attacker knows that FortiManager\u0027s serial number."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.9,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-288",
                  "description": "Execute unauthorized code or commands",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-20T07:54:41.800Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-042",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-042"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiSwitchManager version 7.2.4 or above\nUpgrade to FortiSwitchManager version 7.0.4 or above\nUpgrade to FortiOS version 6.4.16 or above\nUpgrade to FortiOS version 6.2.17 or above\nUpgrade to FortiManager version 7.0.12 or above\nUpgrade to FortiManager version 6.4.15 or above\nUpgrade to FortiPAM version 1.3.0 or above\nUpgrade to FortiProxy version 7.4.3 or above\nUpgrade to FortiProxy version 7.2.9 or above\nUpgrade to FortiProxy version 7.0.16 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2024-26009",
        "datePublished": "2025-08-12T18:59:47.462Z",
        "dateReserved": "2024-02-14T09:18:43.245Z",
        "dateUpdated": "2026-04-20T07:54:41.800Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2023-45584 (GCVE-0-2023-45584)

    Vulnerability from nvd – Published: 2025-08-12 18:59 – Updated: 2026-02-26 17:48
    VLAI
    Summary
    A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.1, FortiProxy 7.2.0 through 7.2.7, FortiProxy 7.0.0 through 7.0.13 allows a privileged attacker to execute code or commands via crafted HTTP or HTTPs requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-415 - Execute unauthorized code or commands
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiProxy Affected: 7.4.0 , ≤ 7.4.1 (semver)
    Affected: 7.2.0 , ≤ 7.2.7 (semver)
    Affected: 7.0.0 , ≤ 7.0.13 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.4.0
    Affected: 7.2.0 , ≤ 7.2.5 (semver)
    Affected: 7.0.0 , ≤ 7.0.12 (semver)
    Affected: 6.4.0 , ≤ 6.4.16 (semver)
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-45584",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-13T15:04:28.411464Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:48:58.204Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.1",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.7",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.13",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.4.0"
                },
                {
                  "lessThanOrEqual": "7.2.5",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.12",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.16",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.1, FortiProxy 7.2.0 through 7.2.7, FortiProxy 7.0.0 through 7.0.13 allows a privileged attacker to execute code or commands via crafted HTTP or HTTPs requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-415",
                  "description": "Execute unauthorized code or commands",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:14:58.637Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-23-209",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-23-209"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiProxy version 7.4.2 or above\nUpgrade to FortiProxy version 7.2.8 or above\nUpgrade to FortiProxy version 7.0.14 or above\nFortinet remediated this issue in FortiSASE version 22.4 and hence customers do not need to perform any action.\nUpgrade to FortiOS version 7.4.1 or above\nUpgrade to FortiOS version 7.2.6 or above\nUpgrade to FortiOS version 7.0.13 or above\nUpgrade to FortiPAM version 1.3.0 or above\nUpgrade to FortiPAM version 1.2.0 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2023-45584",
        "datePublished": "2025-08-12T18:59:35.883Z",
        "dateReserved": "2023-10-09T08:01:29.296Z",
        "dateUpdated": "2026-02-26T17:48:58.204Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-61624 (GCVE-0-2025-61624)

    Vulnerability from cvelistv5 – Published: 2026-04-14 15:39 – Updated: 2026-05-12 12:08
    VLAI KEVIntel
    Summary
    An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') [CWE-22] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.7.0, FortiPAM 1.6 all versions, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.6.0 through 7.6.4, FortiProxy 7.4.0 through 7.4.11, FortiProxy 7.2 all versions, FortiProxy 7.0 all versions, FortiSwitchManager 7.2.0 through 7.2.7, FortiSwitchManager 7.0.0 through 7.0.6 may allow an authenticated attacker with admin profile and at least read-write permissions to write or delete arbitrary files via specific CLI commands.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Escalation of privilege
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.4 (semver)
    Affected: 7.4.0 , ≤ 7.4.9 (semver)
    Affected: 7.2.0 , ≤ 7.2.13 (semver)
    Affected: 7.0.0 , ≤ 7.0.19 (semver)
    Affected: 6.4.0 , ≤ 6.4.16 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.6.0 , ≤ 7.6.4 (semver)
    Affected: 7.4.0 , ≤ 7.4.11 (semver)
    Affected: 7.2.0 , ≤ 7.2.16 (semver)
    Affected: 7.0.0 , ≤ 7.0.23 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.6.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.23:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSwitchManager Affected: 7.2.0 , ≤ 7.2.7 (semver)
    Affected: 7.0.0 , ≤ 7.0.6 (semver)
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.7.0
    Affected: 1.6.0 , ≤ 1.6.2 (semver)
    Affected: 1.5.0 , ≤ 1.5.1 (semver)
    Affected: 1.4.0 , ≤ 1.4.3 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.7.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Siemens RUGGEDCOM APE1808 Affected: 0 , < * (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-61624",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-14T16:16:14.420673Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-14T16:46:14.073Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM APE1808",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-12T12:08:31.410Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-975644.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.4",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.9",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.13",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.19",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.16",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.6.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.23:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.4",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.11",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.16",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.23",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSwitchManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.7",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.6",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.7.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.7.0"
                },
                {
                  "lessThanOrEqual": "1.6.2",
                  "status": "affected",
                  "version": "1.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.5.1",
                  "status": "affected",
                  "version": "1.5.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.4.3",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) [CWE-22] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.7.0, FortiPAM 1.6 all versions, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.6.0 through 7.6.4, FortiProxy 7.4.0 through 7.4.11, FortiProxy 7.2 all versions, FortiProxy 7.0 all versions, FortiSwitchManager 7.2.0 through 7.2.7, FortiSwitchManager 7.0.0 through 7.0.6 may allow an authenticated attacker with admin profile and at least read-write permissions to write or delete arbitrary files via specific CLI commands."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H/E:P/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Escalation of privilege",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-14T15:39:51.445Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-26-122",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-26-122"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to upcoming  FortiOS version 8.0.0 or above\nUpgrade to FortiOS version 7.6.5 or above\nUpgrade to FortiOS version 7.4.10 or above\nUpgrade to FortiProxy version 7.6.5 or above\nUpgrade to FortiProxy version 7.4.12 or above\nUpgrade to FortiPAM version 1.8.0 or above\nUpgrade to FortiPAM version 1.7.1 or above\nFortinet remediated this issue in FortiSASE version 25.4.b and hence customers do not need to perform any action.\nUpgrade to upcoming  FortiSwitch version 8.0.0 or above\nUpgrade to FortiSwitch version 7.6.5 or above\nUpgrade to FortiSwitch version 7.4.9 or above\nUpgrade to FortiSwitchManager version 7.2.8 or above\nUpgrade to FortiSwitchManager version 7.0.7 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-61624",
        "datePublished": "2026-04-14T15:39:51.445Z",
        "dateReserved": "2025-09-29T07:36:48.603Z",
        "dateUpdated": "2026-05-12T12:08:31.410Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-47570 (GCVE-0-2024-47570)

    Vulnerability from cvelistv5 – Published: 2025-12-09 17:20 – Updated: 2026-02-26 16:56
    VLAI
    Summary
    An insertion of sensitive information into log file vulnerability [CWE-532] in FortiOS 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0 all versions; FortiProxy 7.4.0 through 7.4.3, 7.2.0 through 7.2.11; FortiPAM 1.4 all versions, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions and FortiSRA 1.4 all versions may allow a read-only administrator to retrieve API tokens of other administrators via observing REST API logs, if REST API logging is enabled (non-default configuration).
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-532 - Escalation of privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiSASE Affected: 24.1.10
        cpe:2.3:a:fortinet:fortisase:24.1.10:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.11 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSRA Affected: 1.4.0 , ≤ 1.4.3 (semver)
        cpe:2.3:a:fortinet:fortisra:1.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.4.0 , ≤ 1.4.3 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.7 (semver)
    Affected: 7.0.4 , ≤ 7.0.18 (semver)
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-47570",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-12-10T04:57:25.858238Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T16:56:58.331Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortisase:24.1.10:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSASE",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "24.1.10"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.11",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortisra:1.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSRA",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "1.4.3",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "1.4.3",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.7",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.18",
                  "status": "affected",
                  "version": "7.0.4",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An insertion of sensitive information into log file vulnerability [CWE-532] in FortiOS 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0 all versions; FortiProxy 7.4.0 through 7.4.3, 7.2.0 through 7.2.11; FortiPAM 1.4 all versions, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions and FortiSRA 1.4 all versions may allow a read-only administrator to retrieve API tokens of other administrators via observing REST API logs, if REST API logging is enabled (non-default configuration)."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-532",
                  "description": "Escalation of privilege",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:18:59.532Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-268",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-268"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Fortinet remediated this issue in FortiSASE version 24.1.c and hence customers do not need to perform any action.\nUpgrade to FortiProxy version 7.4.4 or above\nUpgrade to FortiProxy version 7.2.12 or above\nUpgrade to FortiSRA version 1.6.0 or above\nUpgrade to FortiSRA version 1.5.0 or above\nUpgrade to FortiPAM version 1.6.0 or above\nUpgrade to FortiPAM version 1.5.0 or above\nUpgrade to FortiOS version 7.6.0 or above\nUpgrade to FortiOS version 7.4.4 or above\nUpgrade to FortiOS version 7.2.8 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2024-47570",
        "datePublished": "2025-12-09T17:20:42.499Z",
        "dateReserved": "2024-09-27T16:19:24.136Z",
        "dateUpdated": "2026-02-26T16:56:58.331Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-54821 (GCVE-0-2025-54821)

    Vulnerability from cvelistv5 – Published: 2025-11-18 17:01 – Updated: 2026-06-23 12:26
    VLAI
    Summary
    An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.11, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiSASE 25.2.91 may allow an authenticated administrator to bypass the trusted host policy via crafted CLI command.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Escalation of privilege
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiPAM Affected: 1.6.0
    Affected: 1.5.0 , ≤ 1.5.1 (semver)
    Affected: 1.4.0 , ≤ 1.4.3 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSASE Affected: 25.2.91
        cpe:2.3:a:fortinet:fortisase:25.2.91:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.3 (semver)
    Affected: 7.4.0 , ≤ 7.4.11 (semver)
    Affected: 7.2.0 , ≤ 7.2.13 (semver)
    Affected: 7.0.0 , ≤ 7.0.19 (semver)
    Affected: 6.4.0 , ≤ 6.4.16 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Siemens RUGGEDCOM APE1808 Affected: 0 , < * (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-54821",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-18T20:04:52.328701Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-18T20:04:58.245Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM APE1808",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-09T09:02:34.143Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-864900.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.6.0"
                },
                {
                  "lessThanOrEqual": "1.5.1",
                  "status": "affected",
                  "version": "1.5.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.4.3",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortisase:25.2.91:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSASE",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "25.2.91"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.3",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.11",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.13",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.19",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.16",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.11, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiSASE 25.2.91 may allow an authenticated administrator to bypass the trusted host policy via crafted CLI command."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 1.8,
                "baseSeverity": "LOW",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:R",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-269",
                  "description": "Escalation of privilege",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-23T12:26:16.355Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-25-545",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-25-545"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Fortinet remediated this issue in FortiSASE version 25.3.b and hence customers do not need to perform any action.\nUpgrade to FortiOS version 8.0.0 or above\nUpgrade to FortiOS version 7.6.4 or above\nUpgrade to FortiOS version 7.4.12 or above\nUpgrade to FortiProxy version 7.6.4 or above\nUpgrade to upcoming  FortiProxy version 7.4.14 or above\nUpgrade to FortiPAM version 1.7.0 or above\nUpgrade to FortiPAM version 1.6.1 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-54821",
        "datePublished": "2025-11-18T17:01:22.231Z",
        "dateReserved": "2025-07-30T08:31:12.197Z",
        "dateUpdated": "2026-06-23T12:26:16.355Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-61713 (GCVE-0-2025-61713)

    Vulnerability from cvelistv5 – Published: 2025-11-18 17:01 – Updated: 2026-02-10 07:24
    VLAI
    Summary
    A Cleartext Storage of Sensitive Information in Memory vulnerability [CWE-316] in Fortinet FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions may allow an authenticated attacker with read-write admin privileges to the CLI to obtain other administrators' credentials via diagnose commands.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiPAM Affected: 1.6.0
    Affected: 1.5.0 , ≤ 1.5.1 (semver)
    Affected: 1.4.0 , ≤ 1.4.3 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-61713",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-18T19:10:28.194971Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-18T19:10:33.592Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.6.0"
                },
                {
                  "lessThanOrEqual": "1.5.1",
                  "status": "affected",
                  "version": "1.5.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.4.3",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A Cleartext Storage of Sensitive Information in Memory vulnerability [CWE-316] in Fortinet FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions may allow an authenticated attacker with read-write admin privileges to the CLI to obtain other administrators\u0027 credentials via diagnose commands."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 3.8,
                "baseSeverity": "LOW",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-316",
                  "description": "Information disclosure",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-10T07:24:09.052Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-25-789",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-25-789"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiPAM version 1.7.0 or above\nUpgrade to FortiPAM version 1.6.1 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-61713",
        "datePublished": "2025-11-18T17:01:18.529Z",
        "dateReserved": "2025-09-30T14:50:57.841Z",
        "dateUpdated": "2026-02-10T07:24:09.052Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-26008 (GCVE-0-2024-26008)

    Vulnerability from cvelistv5 – Published: 2025-10-14 15:23 – Updated: 2026-01-14 09:19
    VLAI
    Summary
    An improper check or handling of exceptional conditions vulnerability [CWE-703] in FortiOS version 7.4.0 through 7.4.3 and before 7.2.7, FortiProxy version 7.4.0 through 7.4.3 and before 7.2.9, FortiPAM before 1.2.0 and FortiSwitchManager version 7.2.0 through 7.2.3 and version 7.0.0 through 7.0.3 fgfm daemon may allow an unauthenticated attacker to repeatedly reset the fgfm connection via crafted SSL encrypted TCP requests.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiProxy Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.9 (semver)
    Affected: 7.0.0 , ≤ 7.0.22 (semver)
    Affected: 2.0.0 , ≤ 2.0.14 (semver)
    Affected: 1.2.0 , ≤ 1.2.13 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:2.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:1.2.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.7 (semver)
    Affected: 7.0.0 , ≤ 7.0.18 (semver)
    Affected: 6.4.0 , ≤ 6.4.16 (semver)
    Affected: 6.2.0 , ≤ 6.2.17 (semver)
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSwitchManager Affected: 7.2.0 , ≤ 7.2.3 (semver)
    Affected: 7.0.0 , ≤ 7.0.3 (semver)
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-26008",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-16T17:21:53.267379Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-16T17:21:58.705Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:2.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:1.2.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.9",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.22",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "2.0.14",
                  "status": "affected",
                  "version": "2.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.2.13",
                  "status": "affected",
                  "version": "1.2.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.7",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.18",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.16",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.2.17",
                  "status": "affected",
                  "version": "6.2.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSwitchManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.3",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.3",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An improper check or handling of exceptional conditions vulnerability [CWE-703] in FortiOS version 7.4.0 through 7.4.3 and before 7.2.7, FortiProxy version 7.4.0 through 7.4.3 and before 7.2.9, FortiPAM before 1.2.0 and FortiSwitchManager version 7.2.0 through 7.2.3 and version 7.0.0 through 7.0.3 fgfm daemon may allow an unauthenticated attacker to repeatedly reset the fgfm connection via crafted SSL encrypted TCP requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-754",
                  "description": "Denial of service",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:19:16.291Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-041",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-041"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiProxy version 7.4.4 or above\nUpgrade to FortiProxy version 7.2.10 or above\nUpgrade to FortiPAM version 1.4.0 or above\nUpgrade to FortiPAM version 1.3.0 or above\nUpgrade to FortiOS version 7.6.0 or above\nUpgrade to FortiOS version 7.4.4 or above\nUpgrade to FortiOS version 7.2.8 or above\nUpgrade to FortiSwitchManager version 7.2.4 or above\nUpgrade to FortiSwitchManager version 7.0.4 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2024-26008",
        "datePublished": "2025-10-14T15:23:04.753Z",
        "dateReserved": "2024-02-14T09:18:43.245Z",
        "dateUpdated": "2026-01-14T09:19:16.291Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-47569 (GCVE-0-2024-47569)

    Vulnerability from cvelistv5 – Published: 2025-10-14 15:23 – Updated: 2026-02-10 07:22
    VLAI
    Summary
    A insertion of sensitive information into sent data vulnerability in Fortinet FortiMail 7.4.0 through 7.4.2, FortiMail 7.2.0 through 7.2.6, FortiMail 7.0 all versions, FortiManager 7.6.0 through 7.6.1, FortiManager 7.4.1 through 7.4.3, FortiManager Cloud 7.4.1 through 7.4.3, FortiNDR 7.6.0 through 7.6.1, FortiNDR 7.4.0 through 7.4.8, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiNDR 1.5 all versions, FortiOS 7.6.0, FortiOS 7.4.0 through 7.4.4, FortiOS 7.2.0 through 7.2.8, FortiOS 7.0.0 through 7.0.15, FortiOS 6.4.0 through 6.4.15, FortiOS 6.2 all versions, FortiOS 6.0 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.4, FortiProxy 7.2.0 through 7.2.10, FortiProxy 7.0 all versions, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1 all versions, FortiProxy 1.0 all versions, FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiTester 7.4.0 through 7.4.2, FortiTester 7.3 all versions, FortiTester 7.2 all versions, FortiTester 7.1 all versions, FortiTester 7.0 all versions, FortiTester 4.2 all versions, FortiVoice 7.0.0 through 7.0.4, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0.7 through 6.0.12, FortiWeb 7.6.0, FortiWeb 7.4.0 through 7.4.4, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions, FortiWeb 6.4 all versions allows attacker to disclose sensitive information via specially crafted packets.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiManager Cloud Affected: 7.4.1 , ≤ 7.4.3 (semver)
        cpe:2.3:a:fortinet:fortimanagercloud:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimanagercloud:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimanagercloud:7.4.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiTester Affected: 7.4.0 , ≤ 7.4.2 (semver)
    Affected: 7.3.0 , ≤ 7.3.2 (semver)
    Affected: 7.2.0 , ≤ 7.2.3 (semver)
    Affected: 7.1.0 , ≤ 7.1.1 (semver)
    Affected: 7.0.0
    Affected: 4.2.0 , ≤ 4.2.1 (semver)
        cpe:2.3:a:fortinet:fortitester:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.3.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.3.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.3.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:4.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortitester:4.2.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiNDR Affected: 7.6.0 , ≤ 7.6.1 (semver)
    Affected: 7.4.0 , ≤ 7.4.8 (semver)
    Affected: 7.2.0 , ≤ 7.2.5 (semver)
    Affected: 7.1.0 , ≤ 7.1.1 (semver)
    Affected: 7.0.0 , ≤ 7.0.7 (semver)
    Affected: 1.5.0 , ≤ 1.5.3 (semver)
        cpe:2.3:a:fortinet:fortindr:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortindr:1.5.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiManager Affected: 7.4.1 , ≤ 7.4.3 (semver)
        cpe:2.3:o:fortinet:fortimanager:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortimanager:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortimanager:7.4.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.6.0
    Affected: 7.4.0 , ≤ 7.4.4 (semver)
    Affected: 7.2.0 , ≤ 7.2.8 (semver)
    Affected: 7.0.0 , ≤ 7.0.15 (semver)
    Affected: 6.4.0 , ≤ 6.4.15 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiRecorder Affected: 7.2.0 , ≤ 7.2.1 (semver)
    Affected: 7.0.0 , ≤ 7.0.4 (semver)
        cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.4.0 , ≤ 7.4.4 (semver)
    Affected: 7.2.0 , ≤ 7.2.10 (semver)
    Affected: 7.0.0 , ≤ 7.0.23 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.23:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiMail Affected: 7.4.0 , ≤ 7.4.2 (semver)
    Affected: 7.2.0 , ≤ 7.2.6 (semver)
    Affected: 7.0.0 , ≤ 7.0.9 (semver)
        cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiWeb Affected: 7.6.0
    Affected: 7.4.0 , ≤ 7.4.4 (semver)
    Affected: 7.2.0 , ≤ 7.2.12 (semver)
    Affected: 7.0.0 , ≤ 7.0.12 (semver)
    Affected: 6.4.0 , ≤ 6.4.3 (semver)
        cpe:2.3:a:fortinet:fortiweb:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiweb:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiVoice Affected: 7.0.0 , ≤ 7.0.4 (semver)
    Affected: 6.4.0 , ≤ 6.4.9 (semver)
    Affected: 6.0.7 , ≤ 6.0.12 (semver)
        cpe:2.3:a:fortinet:fortivoice:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortivoice:6.0.7:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-47569",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-16T15:31:45.922521Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-16T15:31:53.740Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortimanagercloud:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimanagercloud:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimanagercloud:7.4.1:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiManager Cloud",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.1",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortitester:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.3.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:4.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortitester:4.2.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiTester",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.2",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.3.2",
                  "status": "affected",
                  "version": "7.3.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.3",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.1.1",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "7.0.0"
                },
                {
                  "lessThanOrEqual": "4.2.1",
                  "status": "affected",
                  "version": "4.2.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortindr:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortindr:1.5.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiNDR",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.1",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.8",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.5",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.1.1",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.5.3",
                  "status": "affected",
                  "version": "1.5.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortimanager:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortimanager:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortimanager:7.4.1:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.1",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.6.0"
                },
                {
                  "lessThanOrEqual": "7.4.4",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.8",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.15",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.15",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortirecorder:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortirecorder:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiRecorder",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.1",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.4",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.23:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.4",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.10",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.23",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortimail:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortimail:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiMail",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.2",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.6",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.9",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiweb:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiweb:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiWeb",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.6.0"
                },
                {
                  "lessThanOrEqual": "7.4.4",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.12",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.12",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.3",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortivoice:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortivoice:6.0.7:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiVoice",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.4",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.9",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.0.12",
                  "status": "affected",
                  "version": "6.0.7",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A insertion of sensitive information into sent data vulnerability in Fortinet FortiMail 7.4.0 through 7.4.2, FortiMail 7.2.0 through 7.2.6, FortiMail 7.0 all versions, FortiManager 7.6.0 through 7.6.1, FortiManager 7.4.1 through 7.4.3, FortiManager Cloud 7.4.1 through 7.4.3, FortiNDR 7.6.0 through 7.6.1, FortiNDR 7.4.0 through 7.4.8, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiNDR 1.5 all versions, FortiOS 7.6.0, FortiOS 7.4.0 through 7.4.4, FortiOS 7.2.0 through 7.2.8, FortiOS 7.0.0 through 7.0.15, FortiOS 6.4.0 through 6.4.15, FortiOS 6.2 all versions, FortiOS 6.0 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.4, FortiProxy 7.2.0 through 7.2.10, FortiProxy 7.0 all versions, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1 all versions, FortiProxy 1.0 all versions, FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiTester 7.4.0 through 7.4.2, FortiTester 7.3 all versions, FortiTester 7.2 all versions, FortiTester 7.1 all versions, FortiTester 7.0 all versions, FortiTester 4.2 all versions, FortiVoice 7.0.0 through 7.0.4, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0.7 through 6.0.12, FortiWeb 7.6.0, FortiWeb 7.4.0 through 7.4.4, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions, FortiWeb 6.4 all versions allows attacker to disclose sensitive information via specially crafted packets."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:F/RL:U/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-201",
                  "description": "Information disclosure",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-10T07:22:21.025Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-228",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-228"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiManager Cloud version 7.4.4 or above\nUpgrade to FortiTester version 7.6.0 or above\nUpgrade to FortiTester version 7.4.3 or above\nUpgrade to FortiNDR version 7.6.2 or above\nUpgrade to FortiNDR version 7.4.9 or above\nUpgrade to FortiManager version 7.6.2 or above\nUpgrade to FortiManager version 7.4.4 or above\nUpgrade to FortiPAM version 1.5.0 or above\nUpgrade to FortiPAM version 1.4.0 or above\nFortinet remediated this issue in FortiSASE version 24.3.b and hence customers do not need to perform any action.\nUpgrade to FortiOS version 7.6.1 or above\nUpgrade to FortiOS version 7.4.5 or above\nUpgrade to FortiOS version 7.2.9 or above\nUpgrade to FortiOS version 7.0.16 or above\nUpgrade to FortiOS version 6.4.16 or above\nUpgrade to FortiRecorder version 7.2.2 or above\nUpgrade to FortiRecorder version 7.0.5 or above\nUpgrade to FortiProxy version 7.4.5 or above\nUpgrade to FortiProxy version 7.2.11 or above\nUpgrade to FortiMail version 7.6.0 or above\nUpgrade to FortiMail version 7.4.3 or above\nUpgrade to FortiMail version 7.2.7 or above\nUpgrade to FortiWeb version 7.6.1 or above\nUpgrade to FortiWeb version 7.4.5 or above\nUpgrade to FortiVoice version 7.2.0 or above\nUpgrade to FortiVoice version 7.0.5 or above\nUpgrade to FortiVoice version 6.4.10 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2024-47569",
        "datePublished": "2025-10-14T15:23:03.965Z",
        "dateReserved": "2024-09-27T16:19:24.136Z",
        "dateUpdated": "2026-02-10T07:22:21.025Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-22258 (GCVE-0-2025-22258)

    Vulnerability from cvelistv5 – Published: 2025-10-14 15:22 – Updated: 2026-02-26 17:47
    VLAI
    Summary
    A heap-based buffer overflow in Fortinet FortiSRA 1.5.0, 1.4.0 through 1.4.2, FortiPAM 1.5.0, 1.4.0 through 1.4.2, 1.3.0 through 1.3.1, 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiProxy 7.6.0 through 7.6.1, 7.4.0 through 7.4.7, FortiOS 7.6.0 through 7.6.2, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10, 7.0.2 through 7.0.16, FortiSwitchManager 7.2.1 through 7.2.5 allows attackers to escalate their privilege via specially crafted http requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-122 - Escalation of privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiPAM Affected: 1.5.0
    Affected: 1.4.0 , ≤ 1.4.2 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.6 (semver)
    Affected: 7.2.0 , ≤ 7.2.10 (semver)
    Affected: 7.0.2 , ≤ 7.0.16 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSRA Affected: 1.5.0
    Affected: 1.4.0 , ≤ 1.4.2 (semver)
        cpe:2.3:a:fortinet:fortisra:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortisra:1.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.6.0 , ≤ 7.6.1 (semver)
    Affected: 7.4.0 , ≤ 7.4.7 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSwitchManager Affected: 7.2.1 , ≤ 7.2.5 (semver)
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-22258",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-17T03:55:17.613485Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:47:34.153Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.0"
                },
                {
                  "lessThanOrEqual": "1.4.2",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.6",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.10",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.16",
                  "status": "affected",
                  "version": "7.0.2",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortisra:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortisra:1.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSRA",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.0"
                },
                {
                  "lessThanOrEqual": "1.4.2",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.1",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.7",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSwitchManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.5",
                  "status": "affected",
                  "version": "7.2.1",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A heap-based buffer overflow in Fortinet FortiSRA 1.5.0, 1.4.0 through 1.4.2, FortiPAM 1.5.0, 1.4.0 through 1.4.2, 1.3.0 through 1.3.1, 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiProxy 7.6.0 through 7.6.1, 7.4.0 through 7.4.7, FortiOS 7.6.0 through 7.6.2, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10, 7.0.2 through 7.0.16, FortiSwitchManager 7.2.1 through 7.2.5 allows attackers to escalate their privilege via specially crafted http requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 5.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H/E:P/RL:W/RC:R",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-122",
                  "description": "Escalation of privilege",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:17:36.808Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-546",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-546"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiPAM version 1.6.0 or above\nUpgrade to FortiPAM version 1.5.1 or above\nUpgrade to FortiPAM version 1.4.3 or above\nFortinet remediated this issue in FortiSASE version 25.1.b and hence customers do not need to perform any action.\nUpgrade to FortiOS version 7.6.3 or above\nUpgrade to FortiOS version 7.4.7 or above\nUpgrade to FortiOS version 7.2.11 or above\nUpgrade to FortiOS version 7.0.17 or above\nUpgrade to FortiSRA version 1.6.0 or above\nUpgrade to FortiSRA version 1.5.1 or above\nUpgrade to FortiSRA version 1.4.3 or above\nUpgrade to FortiProxy version 7.6.2 or above\nUpgrade to FortiProxy version 7.4.8 or above\nUpgrade to FortiSwitchManager version 7.2.6 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-22258",
        "datePublished": "2025-10-14T15:22:56.720Z",
        "dateReserved": "2025-01-02T10:21:04.198Z",
        "dateUpdated": "2026-02-26T17:47:34.153Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-25253 (GCVE-0-2025-25253)

    Vulnerability from cvelistv5 – Published: 2025-10-14 15:22 – Updated: 2026-06-09 09:02
    VLAI
    Summary
    An Improper Validation of Certificate with Host Mismatch vulnerability [CWE-297] in FortiProxy version 7.6.1 and below, version 7.4.8 and below, 7.2 all versions, 7.0 all versions and FortiOS version 7.6.2 and below, version 7.4.8 and below, 7.2 all versions, 7.0 all versions ZTNA proxy may allow an unauthenticated attacker in a man-in-the middle position to intercept and tamper with connections to the ZTNA proxy
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiProxy Affected: 7.6.0 , ≤ 7.6.1 (semver)
    Affected: 7.4.0 , ≤ 7.4.8 (semver)
    Affected: 7.2.0 , ≤ 7.2.15 (semver)
    Affected: 7.0.0 , ≤ 7.0.22 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.8 (semver)
    Affected: 7.2.0 , ≤ 7.2.12 (semver)
    Affected: 7.0.0 , ≤ 7.0.18 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.4.1
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Siemens RUGGEDCOM APE1808 Affected: 0 , < * (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-25253",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-16T03:57:12.627770Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:47:34.900Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM APE1808",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-09T09:02:11.986Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-864900.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.1",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.8",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.15",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.22",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.8",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.12",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.18",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.4.1"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An Improper Validation of Certificate with Host Mismatch vulnerability [CWE-297] in FortiProxy version 7.6.1 and below, version 7.4.8 and below, 7.2 all versions, 7.0 all versions and FortiOS version 7.6.2 and below, version 7.4.8 and below, 7.2 all versions, 7.0 all versions ZTNA proxy may allow an unauthenticated attacker in a man-in-the middle position to intercept and tamper with connections to the ZTNA proxy"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-297",
                  "description": "Information disclosure",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:18:23.226Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-457",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-457"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiProxy version 7.6.2 or above\nUpgrade to FortiProxy version 7.4.9 or above\nUpgrade to FortiOS version 7.6.3 or above\nUpgrade to FortiOS version 7.4.9 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-25253",
        "datePublished": "2025-10-14T15:22:56.370Z",
        "dateReserved": "2025-02-05T13:31:18.867Z",
        "dateUpdated": "2026-06-09T09:02:11.986Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-57740 (GCVE-0-2025-57740)

    Vulnerability from cvelistv5 – Published: 2025-10-14 15:22 – Updated: 2026-06-09 09:02
    VLAI
    Summary
    An Heap-based Buffer Overflow vulnerability [CWE-122] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.0 all versions, 6.4 all versions; FortiPAM version 1.5.0, version 1.4.2 and below, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions and FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all versions, 7.0 all versions RDP bookmark connection may allow an authenticated user to execute unauthorized code via crafted requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-122 - Execute unauthorized code or commands
    Assigner
    Impacted products
    Vendor Product Version
    Fortinet FortiPAM Affected: 1.5.0
    Affected: 1.4.0 , ≤ 1.4.2 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiProxy Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.3 (semver)
    Affected: 7.2.0 , ≤ 7.2.15 (semver)
    Affected: 7.0.0 , ≤ 7.0.22 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 7.6.0 , ≤ 7.6.2 (semver)
    Affected: 7.4.0 , ≤ 7.4.7 (semver)
    Affected: 7.2.0 , ≤ 7.2.10 (semver)
    Affected: 7.0.0 , ≤ 7.0.18 (semver)
    Affected: 6.4.0 , ≤ 6.4.16 (semver)
        cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Siemens RUGGEDCOM APE1808 Affected: 0 , < * (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-57740",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-16T03:57:11.609008Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:47:35.770Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "affected": [
              {
                "defaultStatus": "unknown",
                "product": "RUGGEDCOM APE1808",
                "vendor": "Siemens",
                "versions": [
                  {
                    "lessThan": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-09T09:02:35.554Z",
              "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
              "shortName": "siemens-SADP"
            },
            "references": [
              {
                "url": "https://cert-portal.siemens.com/productcert/html/ssa-864900.html"
              }
            ],
            "x_adpType": "supplier"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.0"
                },
                {
                  "lessThanOrEqual": "1.4.2",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.22:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.21:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.20:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.19:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.3",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.15",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.22",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:7.6.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.6.2",
                  "status": "affected",
                  "version": "7.6.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.4.7",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.10",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.18",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.4.16",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An Heap-based Buffer Overflow vulnerability [CWE-122] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.0 all versions, 6.4 all versions; FortiPAM version 1.5.0, version 1.4.2 and below, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions and FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all versions, 7.0 all versions RDP bookmark connection may allow an authenticated user to execute unauthorized code via crafted requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-122",
                  "description": "Execute unauthorized code or commands",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:19:39.340Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-25-756",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-25-756"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiPAM version 1.5.1 or above\nUpgrade to FortiPAM version 1.4.3 or above\nUpgrade to FortiProxy version 7.6.3 or above\nUpgrade to FortiProxy version 7.4.4 or above\nUpgrade to FortiOS version 7.6.3 or above\nUpgrade to FortiOS version 7.4.8 or above\nUpgrade to FortiOS version 7.2.11 or above\nUpgrade to FortiSASE-Sovereign version 25.2 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-57740",
        "datePublished": "2025-10-14T15:22:54.733Z",
        "dateReserved": "2025-08-19T12:04:48.437Z",
        "dateUpdated": "2026-06-09T09:02:35.554Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-49201 (GCVE-0-2025-49201)

    Vulnerability from cvelistv5 – Published: 2025-10-14 15:22 – Updated: 2026-01-14 09:18
    VLAI
    Summary
    A weak authentication vulnerability in Fortinet FortiPAM 1.5.0, FortiPAM 1.4.0 through 1.4.2, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiSwitchManager 7.2.0 through 7.2.4 allows attacker to execute unauthorized code or commands via specially crafted http requests
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1390 - Execute unauthorized code or commands
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiPAM Affected: 1.5.0
    Affected: 1.4.0 , ≤ 1.4.2 (semver)
    Affected: 1.3.0 , ≤ 1.3.1 (semver)
    Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSwitchManager Affected: 7.2.0 , ≤ 7.2.4 (semver)
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-49201",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-15T20:49:41.369004Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-15T20:49:54.110Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.3.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.0"
                },
                {
                  "lessThanOrEqual": "1.4.2",
                  "status": "affected",
                  "version": "1.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.3.1",
                  "status": "affected",
                  "version": "1.3.0",
                  "versionType": "semver"
                },
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSwitchManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.4",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A weak authentication vulnerability in Fortinet FortiPAM 1.5.0, FortiPAM 1.4.0 through 1.4.2, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiSwitchManager 7.2.0 through 7.2.4 allows attacker to execute unauthorized code or commands via specially crafted http requests"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:R",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1390",
                  "description": "Execute unauthorized code or commands",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-14T09:18:05.302Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-25-010",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-25-010"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiPAM version 1.6.0 or above\nUpgrade to FortiPAM version 1.5.1 or above\nUpgrade to FortiPAM version 1.4.3 or above\nUpgrade to FortiSwitchManager version 7.2.5 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2025-49201",
        "datePublished": "2025-10-14T15:22:44.720Z",
        "dateReserved": "2025-06-03T07:46:08.521Z",
        "dateUpdated": "2026-01-14T09:18:05.302Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-26009 (GCVE-0-2024-26009)

    Vulnerability from cvelistv5 – Published: 2025-08-12 18:59 – Updated: 2026-04-20 07:54
    VLAI
    Summary
    An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS 6.4.0 through 6.4.15, FortiOS 6.2.0 through 6.2.16, FortiOS 6.0 all versions, FortiPAM 1.2.0, FortiPAM 1.1.0 through 1.1.2, FortiPAM 1.0.0 through 1.0.3, FortiProxy 7.4.0 through 7.4.2, FortiProxy 7.2.0 through 7.2.8, FortiProxy 7.0.0 through 7.0.15, FortiSwitchManager 7.2.0 through 7.2.3, FortiSwitchManager 7.0.0 through 7.0.3 allows an unauthenticated attacker to seize control of a managed device via crafted FGFM requests, if the device is managed by a FortiManager, and if the attacker knows that FortiManager's serial number.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-288 - Execute unauthorized code or commands
    Assigner
    References
    Impacted products
    Vendor Product Version
    Fortinet FortiProxy Affected: 7.4.0 , ≤ 7.4.2 (semver)
    Affected: 7.2.0 , ≤ 7.2.8 (semver)
    Affected: 7.0.0 , ≤ 7.0.15 (semver)
        cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiOS Affected: 6.4.0 , ≤ 6.4.15 (semver)
    Affected: 6.2.0 , ≤ 6.2.16 (semver)
    Affected: 6.0.0 , ≤ 6.0.18 (semver)
        cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.18:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.17:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.16:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.15:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.14:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.13:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.12:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.11:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.10:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.9:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.8:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.7:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.6:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.5:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.4:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortios:6.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiPAM Affected: 1.2.0
    Affected: 1.1.0 , ≤ 1.1.2 (semver)
    Affected: 1.0.0 , ≤ 1.0.3 (semver)
        cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*
        cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Fortinet FortiSwitchManager Affected: 7.2.0 , ≤ 7.2.3 (semver)
    Affected: 7.0.0 , ≤ 7.0.3 (semver)
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*
        cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-26009",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-13T15:04:27.218508Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:48:57.729Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiproxy:7.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiproxy:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiProxy",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.2",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.2.8",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.15",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortios:6.4.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.18:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.17:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.16:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.15:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.14:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.13:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.12:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.11:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.10:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.9:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.8:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.7:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.6:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.5:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.4:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortios:6.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiOS",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "6.4.15",
                  "status": "affected",
                  "version": "6.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.2.16",
                  "status": "affected",
                  "version": "6.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "6.0.18",
                  "status": "affected",
                  "version": "6.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:fortinet:fortipam:1.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiPAM",
              "vendor": "Fortinet",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.2.0"
                },
                {
                  "lessThanOrEqual": "1.1.2",
                  "status": "affected",
                  "version": "1.1.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "1.0.3",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.2.0:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.3:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.2:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.1:*:*:*:*:*:*:*",
                "cpe:2.3:a:fortinet:fortiswitchmanager:7.0.0:*:*:*:*:*:*:*"
              ],
              "defaultStatus": "unaffected",
              "product": "FortiSwitchManager",
              "vendor": "Fortinet",
              "versions": [
                {
                  "lessThanOrEqual": "7.2.3",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "semver"
                },
                {
                  "lessThanOrEqual": "7.0.3",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS 6.4.0 through 6.4.15, FortiOS 6.2.0 through 6.2.16, FortiOS 6.0 all versions, FortiPAM 1.2.0, FortiPAM 1.1.0 through 1.1.2, FortiPAM 1.0.0 through 1.0.3, FortiProxy 7.4.0 through 7.4.2, FortiProxy 7.2.0 through 7.2.8, FortiProxy 7.0.0 through 7.0.15, FortiSwitchManager 7.2.0 through 7.2.3, FortiSwitchManager 7.0.0 through 7.0.3 allows an unauthenticated attacker to seize control of a managed device via crafted FGFM requests, if the device is managed by a FortiManager, and if the attacker knows that FortiManager\u0027s serial number."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.9,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-288",
                  "description": "Execute unauthorized code or commands",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-20T07:54:41.800Z",
            "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            "shortName": "fortinet"
          },
          "references": [
            {
              "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-042",
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-042"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "Upgrade to FortiSwitchManager version 7.2.4 or above\nUpgrade to FortiSwitchManager version 7.0.4 or above\nUpgrade to FortiOS version 6.4.16 or above\nUpgrade to FortiOS version 6.2.17 or above\nUpgrade to FortiManager version 7.0.12 or above\nUpgrade to FortiManager version 6.4.15 or above\nUpgrade to FortiPAM version 1.3.0 or above\nUpgrade to FortiProxy version 7.4.3 or above\nUpgrade to FortiProxy version 7.2.9 or above\nUpgrade to FortiProxy version 7.0.16 or above"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "assignerShortName": "fortinet",
        "cveId": "CVE-2024-26009",
        "datePublished": "2025-08-12T18:59:47.462Z",
        "dateReserved": "2024-02-14T09:18:43.245Z",
        "dateUpdated": "2026-04-20T07:54:41.800Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    VAR-202510-0661

    Vulnerability from variot - Updated: 2025-10-16 23:44

    A insertion of sensitive information into sent data in Fortinet FortiManager Cloud 7.4.1 through 7.4.3, FortiVoice 7.0.0 through 7.0.4, 6.4.0 through 6.4.9, 6.0.7 through 6.0.12, FortiMail 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.9, FortiOS 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.8, 7.0.0 through 7.0.15, 6.4.0 through 6.4.15, 6.2.0 through 6.2.17, 6.0.0 through 6.0.18, FortiWeb 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.11, 7.0.0 through 7.0.11, 6.4.0 through 6.4.3, FortiRecorder 7.2.0 through 7.2.1, 7.0.0 through 7.0.4, FortiNDR 7.6.0 through 7.6.1, 7.4.0 through 7.4.8, 7.2.0 through 7.2.5, 7.1.0 through 7.1.1, 7.0.0 through 7.0.7, 1.5.0 through 1.5.3, FortiPAM 1.3.0 through 1.3.1, 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiTester 7.4.0 through 7.4.2, 7.3.0 through 7.3.2, 7.2.0 through 7.2.3, 7.1.0 through 7.1.1, 7.0.0, 4.2.0 through 4.2.1, FortiProxy 7.4.0 through 7.4.4, 7.2.0 through 7.2.10, 7.0.0 through 7.0.21, 2.0.0 through 2.0.14, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7, FortiManager 7.6.0 through 7.6.1, 7.4.1 through 7.4.3 allows attacker to disclose sensitive information via specially crafted packets.

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202510-0661",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "fortimanager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.1"
          },
          {
            "model": "fortimanager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.6.2"
          },
          {
            "model": "fortimail",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.2.7"
          },
          {
            "model": "fortiproxy",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.0"
          },
          {
            "model": "fortitester",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.3"
          },
          {
            "model": "fortiweb",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "6.4.0"
          },
          {
            "model": "fortiproxy",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.5"
          },
          {
            "model": "fortimail",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.0"
          },
          {
            "model": "fortios",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.5"
          },
          {
            "model": "fortimanager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.6.0"
          },
          {
            "model": "fortindr",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.6.0"
          },
          {
            "model": "fortindr",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.6.2"
          },
          {
            "model": "fortisase",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "24.3.20"
          },
          {
            "model": "fortindr",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "1.5.0"
          },
          {
            "model": "fortivoice",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.0.5"
          },
          {
            "model": "fortivoice",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "6.4.10"
          },
          {
            "model": "fortivoice",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "6.0.7"
          },
          {
            "model": "fortiproxy",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.2.11"
          },
          {
            "model": "fortirecorder",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.0.5"
          },
          {
            "model": "fortiweb",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.5"
          },
          {
            "model": "fortindr",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.9"
          },
          {
            "model": "fortimanager cloud",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.1"
          },
          {
            "model": "fortios",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.2.0"
          },
          {
            "model": "fortimanager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.4"
          },
          {
            "model": "fortirecorder",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.2.2"
          },
          {
            "model": "fortios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.6.0"
          },
          {
            "model": "fortitester",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "4.2.0"
          },
          {
            "model": "fortimail",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.0.0"
          },
          {
            "model": "fortios",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.0.0"
          },
          {
            "model": "fortimail",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.3"
          },
          {
            "model": "fortios",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "6.0.0"
          },
          {
            "model": "fortios",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.2.9"
          },
          {
            "model": "fortipam",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "1.3.1"
          },
          {
            "model": "fortios",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "6.4.16"
          },
          {
            "model": "fortirecorder",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.2.0"
          },
          {
            "model": "fortiproxy",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "1.0.0"
          },
          {
            "model": "fortivoice",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.0.0"
          },
          {
            "model": "fortiweb",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.6.0"
          },
          {
            "model": "fortirecorder",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.0.0"
          },
          {
            "model": "fortimanager cloud",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.4"
          },
          {
            "model": "fortios",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.0.16"
          },
          {
            "model": "fortipam",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "1.0.0"
          },
          {
            "model": "fortios",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "fortinet",
            "version": "7.4.0"
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2024-47569"
          }
        ]
      },
      "cve": "CVE-2024-47569",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "psirt@fortinet.com",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 2.8,
                "id": "CVE-2024-47569",
                "impactScore": 1.4,
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "psirt@fortinet.com",
                "id": "CVE-2024-47569",
                "trust": 1.0,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2024-47569"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "A insertion of sensitive information into sent data in Fortinet FortiManager Cloud 7.4.1 through 7.4.3, FortiVoice 7.0.0 through 7.0.4, 6.4.0 through 6.4.9, 6.0.7 through 6.0.12, FortiMail 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.9, FortiOS 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.8, 7.0.0 through 7.0.15, 6.4.0 through 6.4.15, 6.2.0 through 6.2.17, 6.0.0 through 6.0.18, FortiWeb 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.11, 7.0.0 through 7.0.11, 6.4.0 through 6.4.3, FortiRecorder 7.2.0 through 7.2.1, 7.0.0 through 7.0.4, FortiNDR 7.6.0 through 7.6.1, 7.4.0 through 7.4.8, 7.2.0 through 7.2.5, 7.1.0 through 7.1.1, 7.0.0 through 7.0.7, 1.5.0 through 1.5.3, FortiPAM 1.3.0 through 1.3.1, 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiTester 7.4.0 through 7.4.2, 7.3.0 through 7.3.2, 7.2.0 through 7.2.3, 7.1.0 through 7.1.1, 7.0.0, 4.2.0 through 4.2.1, FortiProxy 7.4.0 through 7.4.4, 7.2.0 through 7.2.10, 7.0.0 through 7.0.21, 2.0.0 through 2.0.14, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7, FortiManager 7.6.0 through 7.6.1, 7.4.1 through 7.4.3 allows attacker to disclose sensitive information via specially crafted packets.",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2024-47569"
          }
        ],
        "trust": 1.0
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2024-47569",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2024-47569"
          }
        ]
      },
      "id": "VAR-202510-0661",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.26984128
      },
      "last_update_date": "2025-10-16T23:44:36.377000Z",
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-201",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2024-47569"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.0,
            "url": "https://fortiguard.fortinet.com/psirt/fg-ir-24-228"
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2024-47569"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2024-47569"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2025-10-14T16:15:35.327000",
            "db": "NVD",
            "id": "CVE-2024-47569"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2025-10-15T17:36:57.413000",
            "db": "NVD",
            "id": "CVE-2024-47569"
          }
        ]
      }
    }