CVE-2025-48839

Summary

An Out-of-bounds Write vulnerability [CWE-787] in FortiADC 8.0.0, 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2 all versions may allow an authenticated attacker to execute arbitrary code via specially crafted HTTP requests.

Affected Software

VendorProductVersion RangeStatus
FortinetFortiADC8.0.0affected
FortinetFortiADC7.6.0 <= 7.6.2affected
FortinetFortiADC7.4.0 <= 7.4.7affected
FortinetFortiADC7.2.0 <= 7.2.8affected
FortinetFortiADC7.1.0 <= 7.1.5affected
FortinetFortiADC7.0.0 <= 7.0.6affected
FortinetFortiADC6.2.0 <= 6.2.6affected

Weaknesses

  • CWE-787: Execute unauthorized code or commands

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References