VDB

GCVE-110-NCSC-2025-255

GCVE-110-NCSC-2025-255
Advisory PublishedCVSS 5.3/10
Vulnetix · Advisory published August 13, 2025
Fortinet heeft kwetsbaarheden verholpen in FortiOS, FortiProxy, FortiPAM, FortiSIEM, FortiWeb en FortiADC.

Weaknesses (CWE)

CWE-190Integer Overflow or WraparoundCWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')CWE-121Stack-based Buffer OverflowCWE-233Improper Handling of ParametersCWE-266Incorrect Privilege AssignmentCWE-288Authentication Bypass Using an Alternate Path or Channel

Risk Scores

CVSS 3.1
5.3/10
Medium · CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersionsPlatforms
Fortinetvers:fortinet/7.1.1
Fortinetvers:fortinet/6.4.0
Fortinetvers:fortinet/6.4.14
Fortinetvers:semver/6.2.0|<=6.2.6
Fortinetvers:fortinet/6.2.2
Fortinetvers:fortinet/6.4.1
Fortinetvers:fortinet/6.4.15
Fortinetvers:fortinet/6.4.3
Fortinetvers:fortinet/6.4.4
Fortinetvers:fortinet/6.4.2
Fortinetvers:fortinet/6.4.10
Fortinetvers:fortinet/6.2.0
Fortinetvers:fortinet/7.2.0
Fortinetvers:fortinet/6.4.16
Fortinetvers:fortinet/6.4.13
Fortinetvers:fortinet/6.2.4
Fortinetvers:fortinet/7.1.0
Fortinetvers:fortinet/6.2.3
Fortinetvers:semver/7.1.0|<=7.1.1
Fortinetvers:fortinet/6.2.1
Fortinetvers:fortinet/6.4.11
Fortinetvers:fortinet/6.2.6
Fortinetvers:fortinet/6.2.5
Fortinetvers:fortinet/6.4.12
Fortinetvers:unknown/7.2.0

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

72,148 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›