CVE-2025-48839

CWE-787Out-of-bounds Write4 documents4 sources
Severity
6.6MEDIUM
EPSS
0.1%
top 67.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Fortinet Fortiadc
Timeline
PublishedNov 18

Description

An Out-of-bounds Write vulnerability [CWE-787] in FortiADC 8.0.0, 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2 all versions may allow an authenticated attacker to execute arbitrary code via specially crafted HTTP requests.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.7 | Impact: 5.9

Affected Packages2 packages

NVDfortinet/fortiadc6.2.07.4.8+2
CVEListV5fortinet/fortiadc7.6.07.6.2+6

🔴Vulnerability Details

2
GHSA
GHSA-25x7-2m3g-jhfw: An Out-of-bounds Write vulnerability [CWE-787] in FortiADC 82025-11-18
CVEList
CVE-2025-48839: An Out-of-bounds Write vulnerability [CWE-787] in FortiADC 82025-11-18

📋Vendor Advisories

1
Fortinet
An Out-of-bounds Write vulnerability [CWE-787] in FortiADC 8.0.0, 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all vers...2025-11-18
CVE-2025-48839 (MEDIUM CVSS 6.6) | An Out-of-bounds Write vulnerabilit | cvebase.io