CNNVD-202511-2027 Information

CNNVD ID

CNNVD-202511-2027

Related CVE

CVE-2025-48839

• CNNVD Published: 2025-11-18

Description (Chinese)

Fortinet FortiADC是美国飞塔（Fortinet）公司的一款应用交付控制器。 Fortinet FortiADC存在缓冲区错误漏洞，该漏洞源于越界写入，可能导致执行任意代码。以下版本受到影响：8.0.0版本、7.6.0版本至7.6.2版本、7.4.0版本至7.4.7版本、7.2所有版本、7.1所有版本、7.0所有版本和6.2所有版本。

Description (English)

Fortinet FortiADC is an application delivery controller for Fortinet. Fortinet FortiADC has an error loophole in the buffer zone, which stems from cross-border writing and may lead to the enforcement of arbitrary codes. The following versions were affected: 8.0.0, 7.6.0 to 7.6.2, 7.4.0 to 7.4.7, 7.2 all, 7.1 all, 7.0 all and 6.2 all.

Hazard Level

High

Vulnerability Type

缓冲区错误

Affected Vendor

飞塔

Published

2025-11-18

Last Modified

2026-02-24

References

https://fortiguard.fortinet.com/psirt/FG-IR-25-225 https://access.redhat.com/security/cve/cve-2025-48839

Patch

https://fortiguard.fortinet.com/psirt/FG-IR-25-225