PT-2025-41966 · Fortinet · Fortios

Published

2025-10-14

·

Updated

2025-10-14

·

CVE-2025-58903

CVSS v3.1
4.9
VectorAV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
An Unchecked Return Value vulnerability [CWE-252] in Fortinet FortiOS version 7.6.0 through 7.6.3 and before 7.4.8 API allows an authenticated user to cause a Null Pointer Dereference, crashing the http daemon via a specialy crafted request.

Fix

Unchecked Return Value

Weakness Enumeration

Related Identifiers

CVE-2025-58903

Affected Products

Fortios