CVE-2025-46776 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A buffer copy without checking size of input ('classic buffer overflow') vulnerability in Fortinet FortiExtender 7.6.0 through 7.6.1, FortiExtender 7.4.0 throug…
Medium CVSS: 6.4

CVE-2025-46776

A buffer copy without checking size of input ('classic buffer overflow') vulnerability in Fortinet FortiExtender 7.6.0 through 7.6.1, FortiExtender 7.4.0 through 7.4.6, FortiExtender 7.2 all versions, FortiExtender 7.0 all versions may allow an authenticated user to execute arbitrary code or commands via crafted CLI commands.
Vendor
Fortinet
Product
Fortiextender Firmware
CWE
CWE-120
Yayın Tarihi
2025-11-18 17:16:02
Güncelleme
2026-01-14 10:16:04
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-120 Fortiextender Firmware MEDIUM Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-25-251