VDB

GCVE-110-NCSC-2025-83

GCVE-110-NCSC-2025-83
Advisory PublishedCVSS 8.2/10
Vulnetix · Advisory published March 12, 2025
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Weaknesses (CWE)

CWE-863Incorrect AuthorizationCWE-89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')CWE-321Use of Hard-coded Cryptographic KeyCWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')CWE-602Client-Side Enforcement of Server-Side Security

Risk Scores

CVSS 3.1
8.2/10
High · CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:X/RC:C

Affected Products

VendorProductVersionsPlatforms
Fortinetvers:unknown/4.4.6
Fortinetvers:unknown/4.4.5
Fortinetvers:fortinet/4.4.2
Fortinetvers:fortinet/4.4.1
Fortinetvers:fortinet/4.4.0
Fortinetvers:fortinet/4.4.4
Fortinetvers:unknown/4.4.3
Fortinetvers:unknown/4.4.4
Fortinetvers:unknown/4.4.2
Fortinetvers:unknown/4.4.1
Fortinetvers:fortinet/4.4.3
Fortinetvers:fortinet/4.4.6
Fortinetvers:unknown/4.4.0
Fortinetvers:semver/4.4.0|<=4.4.6
Fortinetvers:fortinet/4.4.5

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

73,443 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›