CNNVD-202510-2000 Information

CNNVD ID

CNNVD-202510-2000

Related CVE

CVE-2025-47856

• CNNVD Published: 2025-10-14

Description (Chinese)

Fortinet FortiVoice是美国飞塔（Fortinet）公司的一个统一通信和协作即服务。 Fortinet FortiVoice 7.2.0版本、7.0.0版本至7.0.6版本和6.4.10之前版本存在操作系统命令注入漏洞，该漏洞源于特殊元素中和不当，可能导致OS命令注入攻击。

Description (English)

Fortinet FortiVoice is a unified communications and collaborative service of Fortinet. Fortinet FortiVoice, version 7.2.0, version 7.0.0 to version 7.0.6 and pre-version 6.4.10, there is a gap in the operating system commands, which stems from the inaccuracy of the special elements and may lead to an OS order being injected into the attack.

Hazard Level

High

Vulnerability Type

操作系统命令注入

Affected Vendor

飞塔

Published

2025-10-14

Last Modified

2026-02-24

References

https://fortiguard.fortinet.com/psirt/FG-IR-25-250 https://access.redhat.com/security/cve/cve-2025-47856

Patch

https://fortiguard.fortinet.com/psirt/FG-IR-25-250