CISA-2025-32756
Reported by fortinet · Published May 13, 2025
A stack-based buffer overflow vulnerability [CWE-121] vulnerability in Fortinet FortiCamera 2.1.0 through 2.1.3, FortiCamera 2.0 all versions, FortiCamera 1.1 all versions, FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0 through 7.4.4, FortiMail 7.2.0 through 7.2.7, FortiMail 7.0.0 through 7.0.8, FortiNDR 7.6.0, FortiNDR 7.4.0 through 7.4.7, FortiNDR 7.2.0 through 7.2.4, FortiNDR 7.0.0 through 7.0.6, FortiRecorder 7.2.0 through 7.2.3, FortiRecorder 7.0.0 through 7.0.5, FortiRecorder 6.4.0 through 6.4.5, FortiVoice 7.2.0, FortiVoice 7.0.0 through 7.0.6, FortiVoice 6.4.0 through 6.4.10 allows a remote unauthenticated attacker to execute arbitrary code or commands via sending HTTP requests with specially crafted hash cookie.
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fortinet | FortiNDR | 7.6.0, 7.4.0, 7.2.0 |
| Fortinet | FortiCamera | 2.1.0, 2.0.0, 1.1.0 |
| Fortinet | FortiRecorder | 7.2.0, 7.0.0, 6.4.0 |
| Fortinet | FortiVoice | 7.2.0, 7.0.0, 6.4.0 |
| Fortinet | FortiMail | 7.6.0, 7.4.0, 7.2.0 |
| Fortinet | FortiCamera | 1.1.0, 2.0.0, 2.1.0 |
| Fortinet | FortiNDR | 1.1.0, 7.0.0, 7.1.0 |
| Fortinet | FortiRecorder | 6.4.0, 7.0.0, 7.2.0 |
| Fortinet | FortiMail | 7.2.0, 7.6.0, 7.2.0 |
| Fortinet | FortiVoice | 6.4.0, 7.0.0, 7.2.0 |
Timeline
- May 13, 2025 CVE Published
- Jan 15, 2026 CVE Updated