CVE-2025-25249

Name of the Vulnerable Software and Affected Versions Fortinet FortiOS versions 6.4.0 through 6.4.16 Fortinet FortiOS versions 7.0.0 through 7.0.17 Fortinet FortiOS versions 7.2.0 through 7.2.11 Fortinet FortiOS versions 7.4.0 through 7.4.8 Fortinet FortiOS versions 7.6.0 through 7.6.3 FortiSwitchManager versions 7.0.0 through 7.0.5 FortiSwitchManager versions 7.2.0 through 7.2.6

Description A heap-based buffer overflow exists in the cw acd daemon of Fortinet FortiOS and FortiSwitchManager. This flaw allows a remote, unauthenticated attacker to execute arbitrary code or commands by sending specially crafted requests. The vulnerability resides in the packet processing code and impacts systems globally. Exploitation involves sending crafted packets to the cw acd daemon. No information is available regarding the number of devices affected or real-world incidents. The vulnerability is present in the cw acd daemon, which is responsible for processing packets.

Recommendations Fortinet FortiOS versions 6.4.0 through 6.4.16: Upgrade to version 6.4.17 or later. Fortinet FortiOS versions 7.0.0 through 7.0.17: Upgrade to version 7.0.18 or later. Fortinet FortiOS versions 7.2.0 through 7.2.11: Upgrade to version 7.2.12 or later. Fortinet FortiOS versions 7.4.0 through 7.4.8: Upgrade to version 7.4.9 or later. Fortinet FortiOS versions 7.6.0 through 7.6.3: Upgrade to version 7.6.4 or later. FortiSwitchManager versions 7.0.0 through 7.0.5: Upgrade to version 7.0.6 or later. FortiSwitchManager versions 7.2.0 through 7.2.6: Upgrade to version 7.2.7 or later.