VDB
GCVE-110-NCSC-2025-255
GCVE-110-NCSC-2025-255
Advisory PublishedCVSS 5.3/10
Fortinet heeft kwetsbaarheden verholpen in FortiOS, FortiProxy, FortiPAM, FortiSIEM, FortiWeb en FortiADC.
Weaknesses (CWE)
CWE-190Integer Overflow or WraparoundCWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')CWE-121Stack-based Buffer OverflowCWE-233Improper Handling of ParametersCWE-266Incorrect Privilege AssignmentCWE-288Authentication Bypass Using an Alternate Path or Channel
Risk Scores
CVSS 3.1
5.3/10
Medium · CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Fortinet | vers:fortinet/7.1.1 | — | — |
| Fortinet | vers:fortinet/6.4.0 | — | — |
| Fortinet | vers:fortinet/6.4.14 | — | — |
| Fortinet | vers:semver/6.2.0|<=6.2.6 | — | — |
| Fortinet | vers:fortinet/6.2.2 | — | — |
| Fortinet | vers:fortinet/6.4.1 | — | — |
| Fortinet | vers:fortinet/6.4.15 | — | — |
| Fortinet | vers:fortinet/6.4.3 | — | — |
| Fortinet | vers:fortinet/6.4.4 | — | — |
| Fortinet | vers:fortinet/6.4.2 | — | — |
| Fortinet | vers:fortinet/6.4.10 | — | — |
| Fortinet | vers:fortinet/6.2.0 | — | — |
| Fortinet | vers:fortinet/7.2.0 | — | — |
| Fortinet | vers:fortinet/6.4.16 | — | — |
| Fortinet | vers:fortinet/6.4.13 | — | — |
| Fortinet | vers:fortinet/6.2.4 | — | — |
| Fortinet | vers:fortinet/7.1.0 | — | — |
| Fortinet | vers:fortinet/6.2.3 | — | — |
| Fortinet | vers:semver/7.1.0|<=7.1.1 | — | — |
| Fortinet | vers:fortinet/6.2.1 | — | — |
| Fortinet | vers:fortinet/6.4.11 | — | — |
| Fortinet | vers:fortinet/6.2.6 | — | — |
| Fortinet | vers:fortinet/6.2.5 | — | — |
| Fortinet | vers:fortinet/6.4.12 | — | — |
| Fortinet | vers:unknown/7.2.0 | — | — |
Browse GCVE Records
72,148 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.