VDB

CESS-2025-64157

CESS-2025-64157 PUBLISHED CVSS 7.2 HIGH

A use of externally-controlled format string vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0 all versions allows an authenticated admin to execute unauthorized code or commands via specifically crafted configuration.

Risk Scores

CVSS 3.1
7.2
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Timeline

  • Feb 10, 2026 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›