CVE-2025-25254 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE-22] in FortiWeb version 7.6.2 and below, version 7.4.6 and…
High CVSS: 7.2

CVE-2025-25254

An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE-22] in FortiWeb version 7.6.2 and below, version 7.4.6 and below, 7.2 all versions, 7.0 all versions endpoint may allow an authenticated admin to access and modify the filesystem via crafted requests.
Vendor
Fortinet
Product
Fortiweb
CWE
CWE-22
Yayın Tarihi
2025-04-08 14:15:32
Güncelleme
2025-07-22 21:23:37
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-22 Fortiweb HIGH Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-24-474