PT-2025-47355 · Fortinet · Fortiadc
Published
2025-11-18
·
Updated
2025-11-19
·
CVE-2025-48839
CVSS v2.0
7.1
High
| Vector | AV:N/AC:H/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
FortiADC versions 6.2 through 8.0.0
Description
An out-of-bounds write condition exists in FortiADC that may allow an authenticated attacker to execute arbitrary code. This can be triggered by sending specially crafted HTTP requests.
Recommendations
FortiADC versions 6.2 through 7.0 all versions should be updated.
FortiADC versions 7.1 all versions should be updated.
FortiADC versions 7.2 all versions should be updated.
FortiADC versions 7.4.0 through 7.4.7 should be updated.
FortiADC versions 7.6.0 through 7.6.2 should be updated.
FortiADC version 8.0.0 should be updated.
Fix
RCE
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fortiadc