CVE-2025-22251 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2 all versions, 7.0 all…
Low CVSS: 3.1

CVE-2025-22251

An improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow an unauthenticated attacker to inject unauthorized sessions via crafted FGSP session synchronization packets.
Vendor
Fortinet
Product
Fortios
CWE
CWE-923
Yayın Tarihi
2025-06-10 17:21:08
Güncelleme
2025-07-25 15:26:10
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-923 Fortios LOW Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-24-287