CVE-2025-59719 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9 may all…
Critical CVSS: 9.8

CVE-2025-59719

An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9 may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message.
Vendor
Fortinet
Product
Fortiweb
CWE
CWE-347
Yayın Tarihi
2025-12-09 18:15:55
Güncelleme
2025-12-09 19:59:29
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-347 Fortiweb CRITICAL Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-25-647