CNNVD-202510-1956 Information

CNNVD ID

CNNVD-202510-1956

Related CVE

CVE-2025-59921

• CNNVD Published: 2025-10-14

Description (Chinese)

Fortinet FortiADC是美国飞塔（Fortinet）公司的一款应用交付控制器。 Fortinet FortiADC存在信息泄露漏洞，该漏洞源于特制HTTP或HTTPs请求可能导致敏感数据泄露。以下版本受到影响：7.4.0版本、7.2.3及之前版本、7.1.4及之前版本、7.0所有版本和6.2版本。

Description (English)

Fortinet FortiADC is an application delivery controller for Fortinet. Fortinet FortiADC has an information leakage loophole, which arises out of specially designed HTTP or HTTPs requests that may lead to the disclosure of sensitive data. The following versions were affected: 7.4.0, 7.2.3 and earlier, 7.1.4 and earlier, 7.0 and 6.2.

Hazard Level

High

Vulnerability Type

信息泄露

Affected Vendor

飞塔

Published

2025-10-14

Last Modified

2026-02-24

References

https://fortiguard.fortinet.com/psirt/FG-IR-23-434 https://access.redhat.com/security/cve/cve-2025-59921

Patch

https://fortiguard.fortinet.com/psirt/FG-IR-23-434