216.73.217.98

CVE-2025-57740

· Published 14/10/2025 16:15 · Modified 14/10/2025 19:36

Labels: CVE-2025-57740 2025-10-14CVE-2025-57740CWE-122[email protected]

Essential information

Published
14/10/2025 16:15
Modified
14/10/2025 19:36
Author
Creator
CVSS
7.5 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

An Heap-based Buffer Overflow vulnerability [CWE-122] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.0 all versions, 6.4 all versions; FortiPAM version 1.5.0, version 1.4.2 and below, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions and FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all versions, 7.0 all versions RDP bookmark connection may allow an authenticated user to execute unauthorized code via crafted requests.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
fortinet / fortios cpe:2.3:a:fortinet:fortios:7.6.2:*:*:*:*:*:*:*
fortinet / fortios cpe:2.3:a:fortinet:fortios:7.4.7:*:*:*:*:*:*:*
fortinet / fortios cpe:2.3:a:fortinet:fortios:7.2.10:*:*:*:*:*:*:*
fortinet / fortios cpe:2.3:a:fortinet:fortios:7.0:*:*:*:*:*:*:*
fortinet / fortios cpe:2.3:a:fortinet:fortios:6.4:*:*:*:*:*:*:*
fortinet / fortipam cpe:2.3:a:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*
fortinet / fortipam cpe:2.3:a:fortinet:fortipam:1.4.2:*:*:*:*:*:*:*
fortinet / fortipam cpe:2.3:a:fortinet:fortipam:1.3:*:*:*:*:*:*:*
fortinet / fortipam cpe:2.3:a:fortinet:fortipam:1.2:*:*:*:*:*:*:*
fortinet / fortipam cpe:2.3:a:fortinet:fortipam:1.1:*:*:*:*:*:*:*
fortinet / fortipam cpe:2.3:a:fortinet:fortipam:1.0:*:*:*:*:*:*:*
fortinet / fortiproxy cpe:2.3:a:fortinet:fortiproxy:7.6.2:*:*:*:*:*:*:*
fortinet / fortiproxy cpe:2.3:a:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
fortinet / fortiproxy cpe:2.3:a:fortinet:fortiproxy:7.2:*:*:*:*:*:*:*
fortinet / fortiproxy cpe:2.3:a:fortinet:fortiproxy:7.0:*:*:*:*:*:*:*

References