CVE-2025-48840
An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.8, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote unauthenticated attacker to bypass hostname restrictions via a specially crafted request.
Vendor
Product
CWE
Yayın Tarihi
2026-03-10 18:17:57
Güncelleme
2026-03-12 21:20:03
Source Identifier
psirt@fortinet.com
KEV Date Added
-