CVE-2025-47857 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A improper neutralization of special elements used in an os command ('os command injection') vulnerability [CWE-78] in Fortinet FortiWeb CLI version 7.6.0 throu…
Medium CVSS: 6.7

CVE-2025-47857

A improper neutralization of special elements used in an os command ('os command injection') vulnerability [CWE-78] in Fortinet FortiWeb CLI version 7.6.0 through 7.6.3 and before 7.4.8 allows a privileged attacker to execute arbitrary code or command via crafted CLI commands.
Vendor
Fortinet
Product
Fortiweb
CWE
CWE-78
Yayın Tarihi
2025-08-12 19:15:29
Güncelleme
2025-08-15 12:25:37
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-78 Fortiweb MEDIUM Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-25-253