CVE-2025-32932 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An Improper neutralization of input during web page generation ('cross-site scripting') vulnerability [CWE-79] in FortiSOAR version 7.6.1 and below, version 7.5…
Medium CVSS: 6.5

CVE-2025-32932

An Improper neutralization of input during web page generation ('cross-site scripting') vulnerability [CWE-79] in FortiSOAR version 7.6.1 and below, version 7.5.1 and below, 7.4 all versions, 7.3 all versions, 7.2 all versions, 7.0 all versions, 6.4 all versions WEB UI may allow an authenticated remote attacker to perform an XSS attack via stored malicious service requests
Vendor
Fortinet
Product
Fortisoar
CWE
CWE-79
Yayın Tarihi
2025-08-12 19:15:29
Güncelleme
2025-08-15 12:25:28
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-79 Fortisoar MEDIUM Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-24-513