CVE-2025-23458

Name of the Vulnerable Software and Affected Versions Rakessh Ads24 Lite versions through 1.0 Fortinet (affected versions not specified)

Description A Reflected Cross-site Scripting issue exists in Rakessh Ads24 Lite. This allows for improper neutralization of input during web page generation. Fortinet has addressed a zero-day that was actively exploited in attacks targeting FortiVoice, potentially leading to network breaches and remote access for attackers. These attacks have already impacted enterprises.

Recommendations Update Rakessh Ads24 Lite to a version later than 1.0. Update Fortinet FortiVoice to the latest available version.