CNNVD-202508-1253 Information

CNNVD ID

CNNVD-202508-1253

Related CVE

CVE-2024-48892

• CNNVD Published: 2025-08-12

Description (Chinese)

Fortinet FortiSOAR是美国飞塔（Fortinet）公司的一种安全编排、自动化和响应 (SOAR) 解决方案。 Fortinet FortiSOAR 7.6.0版本、7.5.0至7.5.1版本、7.4所有版本和7.3所有版本存在安全漏洞，该漏洞源于路径遍历，可能导致读取任意文件。

Description (English)

Fortinet FortiSOAR is a safe arrangement, automation and responsiveness (SOAR) solution for Fortinet. Fortinet FortiSOAR version 7.6.0, versions 7.5.0 to 7.5.1, all version 7.4 and all version 7.3 contain a security loophole, which originates from the routing and may lead to the reading of any document.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

飞塔

Published

2025-08-12

Last Modified

2026-02-24

References

https://fortiguard.fortinet.com/psirt/FG-IR-24-421 https://access.redhat.com/security/cve/cve-2024-48892

Patch

https://docs.fortinet.com/upgrade-tool/fortigate