CVE-2025-48839_CVE-2025-48839

6.3 / 10

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:C

Description

An Out-of-bounds Write vulnerability [CWE-787] in FortiADC 8.0.0, 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2 all versions may allow an authenticated attacker to execute arbitrary code via specially crafted HTTP requests.

Basic Information

ID CVE-2025-48839

Source fortinet

Published Nov 18, 2025 at 17:01

Modified Nov 18, 2025 at 20:20

Affected Product

Vendor Fortinet

Product FortiADC

Version 8.0.0

Affected Versions Fortinet FortiADC 8.0.0
Fortinet FortiADC 7.6.0
Fortinet FortiADC 7.4.0
Fortinet FortiADC 7.2.0
Fortinet FortiADC 7.1.0
Fortinet FortiADC 7.0.0
Fortinet FortiADC 6.2.0

CWE Classification

CWE-787

References

fortiguard.fortinet.com /psirt/FG-IR-25-225

{
    "lastseen": "",
    "description": "An Out-of-bounds Write vulnerability [CWE-787] in FortiADC 8.0.0, 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2 all versions may allow an authenticated attacker to execute arbitrary code via specially crafted HTTP requests.",
    "published": "2025-11-18T17:01:25.620Z",
    "modified": "2025-11-18T20:20:54.257Z",
    "type": "cve",
    "title": "CVE-2025-48839",
    "source": "fortinet",
    "references": "https://fortiguard.fortinet.com/psirt/FG-IR-25-225",
    "id": "CVE-2025-48839",
    "bulletinFamily": "",
    "cwe": [
        "CWE-787"
    ],
    "cvelist": null,
    "sourceData": "Fortinet FortiADC 8.0.0\nFortinet FortiADC 7.6.0\nFortinet FortiADC 7.4.0\nFortinet FortiADC 7.2.0\nFortinet FortiADC 7.1.0\nFortinet FortiADC 7.0.0\nFortinet FortiADC 6.2.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:C",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "FortiADC",
    "version": "8.0.0",
    "vendor": "Fortinet",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}