CNNVD-202601-2151 Information
Jan 13, 2026
cve
CNNVD ID
CNNVD-202601-2151
Related CVE
- CNNVD Published: 2026-01-13
Description (Chinese)
Fortinet FortiVoice是美国飞塔(Fortinet)公司的一个统一通信和协作即服务。 Fortinet FortiVoice 7.2.0版本至7.2.2版本和7.0.0版本至7.0.7版本存在路径遍历漏洞,该漏洞源于路径遍历限制不当,可能导致特权攻击者通过特制HTTP或HTTPS请求删除底层文件系统文件。
Description (English)
Fortinet FortiVoice is a unified communications and collaborative service of Fortinet. Fortinet FortiVoice 7.2.0 to 7.2.2 and 7.0.0 to 7.0.7 has a loophole in the path, which stems from inappropriate routing restrictions, which may lead the privileged assailant to request the deletion of the bottom file through a custom HTTP or HTTPS.
Hazard Level
High
Vulnerability Type
路径遍历
Affected Vendor
飞塔
Published
2026-01-13
Last Modified
2026-02-24
References
https://fortiguard.fortinet.com/psirt/FG-IR-25-778 https://access.redhat.com/security/cve/cve-2025-58693
Patch
https://fortiguard.fortinet.com/psirt/FG-IR-25-778
Share on: