CNNVD-202507-2018 Information
CNNVD ID
CNNVD-202507-2018
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
Fortinet FortiOS是美国飞塔(Fortinet)公司的一套专用于FortiGate网络安全平台上的安全操作系统。该系统为用户提供防火墙、防病毒、IPSec/SSLVPN、Web内容过滤和反垃圾邮件等多种安全功能。 Fortinet FortiOS存在安全漏洞,该漏洞源于堆缓冲区溢出,可能导致权限提升。以下版本受到影响:7.6.0至7.6.2版本、7.4.0至7.4.7版本和7.2.4至7.2.11版本。
Description (English)
Fortinet FortiOS is a security operating system dedicated to the FortiGate network security platform of the United States of America. The system provides a wide range of security features for users, including firewalls, anti-virus, IPSEc/SSLVPN, Web content filters and anti-spam. Fortinet FortiOS has a security loophole, which stems from the spilling out of the buffer zone, which could lead to increased access. The following versions were affected: 7.6.0 to 7.6.2, 7.4.0 to 7.4.7 and 7.2.4 to 7.2.11.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Fortra
Published
2025-07-15
Last Modified
2026-02-24
References
https://fortiguard.fortinet.com/psirt/FG-IR-25-026 https://nvd.nist.gov/vuln/detail/CVE-2025-24477 https://access.redhat.com/security/cve/cve-2025-24477
Patch
https://fortiguard.fortinet.com/psirt/FG-IR-25-026
Share on: