CNNVD-202512-1164 Information

Dec 09, 2025 cve

CNNVD ID

CNNVD-202512-1164

CVE-2025-64156

CNNVD Published: 2025-12-09

Description (Chinese)

Fortinet FortiVoice是美国飞塔（Fortinet）公司的一个统一通信和协作即服务。 Fortinet FortiVoice 7.2.0版本至7.2.1版本、7.0.0版本至7.0.7版本、6.4版本和6.0版本存在SQL注入漏洞，该漏洞源于SQL注入，可能导致执行任意代码。

Description (English)

Fortinet FortiVoice is a unified communications and collaborative service of Fortinet. Fortinet FortiVoice, version 7.2.01, version 7.0.0 to version 7.0.7, version 6.4 and version 6.0, has an injection loophole in SQL, which originates from SQL injection and may lead to the implementation of arbitrary codes.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

飞塔

Published

2025-12-09

Last Modified

2026-02-24

References

https://fortiguard.fortinet.com/psirt/FG-IR-25-362

Patch

https://fortiguard.fortinet.com/psirt/FG-IR-25-362

Share on: