CVE-2025-64156 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiVoice 7.2.0 through 7.2.2, FortiVoice 7.0…
High CVSS: 7.2

CVE-2025-64156

An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiVoice 7.2.0 through 7.2.2, FortiVoice 7.0.0 through 7.0.7, FortiVoice 6.4 all versions, FortiVoice 6.0 all versions may allow an authenticated privileged attacker to execute unauthorized code or commands via crafted requests
Vendor
Fortinet
Product
Fortivoice
CWE
CWE-89
Yayın Tarihi
2025-12-09 18:16:05
Güncelleme
2025-12-10 14:16:19
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-89 Fortivoice HIGH Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-25-362