CVE-2025-25249
published 2026-01-13CVE-2025-25249: A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiOS 6.4 all versions, FortiSwitchManager 7.2.0 through 7.2.6, FortiSwitchManager 7.0.0 through 7.0.5 allows attacker to execute unauthorized code or commands via specially crafted packets
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortinet | — | — |
| fortinet | fortios | — | — |
| fortinet | fortios | >= 6.4.0 < 6.4.17 | 6.4.17 |
| fortinet | fortios | >= 7.0.0 < 7.0.18 | 7.0.18 |
| fortinet | fortios | >= 7.2.0 < 7.2.12 | 7.2.12 |
| fortinet | fortios | 7.2.4 – 7.2.11 | — |
| fortinet | fortios | >= 7.4.0 < 7.4.9 | 7.4.9 |
| fortinet | fortios | 7.4.0 – 7.4.7 | — |
| fortinet | fortios | >= 7.6.0 < 7.6.4 | 7.6.4 |
| fortinet | fortios | 7.6.0 – 7.6.2 | — |
| fortinet | fortisase | — | — |
| fortinet | fortisase | — | — |
| fortinet | fortisase | — | — |
| fortinet | fortiswitchmanager | — | — |
| fortinet | fortiswitchmanager | >= 7.0.0 < 7.0.6 | 7.0.6 |
| fortinet | fortiswitchmanager | >= 7.2.0 < 7.2.7 | 7.2.7 |
| fortinet | fortiswitchmanager | 7.2.2 – 7.2.5 | — |