CVE-2025-49813 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An improper neutralization of special elements used in an OS Command ("OS Command Injection") vulnerability [CWE-78] in Fortinet FortiADC version 7.2.0 and befo…
High CVSS: 7.2

CVE-2025-49813

An improper neutralization of special elements used in an OS Command ("OS Command Injection") vulnerability [CWE-78] in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a remote and authenticated attacker with low privilege to execute unauthorized code via specifically crafted HTTP parameters.
Vendor
Fortinet
Product
Fortiadc
CWE
CWE-78
Yayın Tarihi
2025-08-12 19:15:30
Güncelleme
2025-08-15 12:26:02
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-78 Fortiadc HIGH Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-25-501