CVE-2025-54820

CWE-121 — Stack-based Buffer Overflow CWE-787 — Out-of-bounds Write5 documents5 sources

Severity

8.1HIGH

EPSS

0.1%

top 81.56%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortimanager

Timeline

PublishedMar 10

Description

A Stack-based Buffer Overflow vulnerability [CWE-121] vulnerability in Fortinet FortiManager 7.4.0 through 7.4.2, FortiManager 7.2.0 through 7.2.10, FortiManager 6.4 all versions may allow a remote unauthenticated attacker to execute unauthorized commands via crafted requests, if the service is enabled. The success of the attack depends on the ability to bypass the stack protection mechanisms.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages2 packages

▶NVDfortinet/fortimanager6.4.0 — 7.2.11+1

▶CVEListV5fortinet/fortimanager7.4.0 — 7.4.2+2

🔴Vulnerability Details

CVEList

CVE-2025-54820: A Stack-based Buffer Overflow vulnerability [CWE-121] vulnerability in Fortinet FortiManager 7↗2026-03-10

▶

GHSA

GHSA-qq5m-xh4x-hv7f: A Stack-based Buffer Overflow vulnerability [CWE-121] vulnerability in Fortinet FortiManager 7↗2026-03-10

▶

📋Vendor Advisories

Fortinet

Buffer overflow via fgtupdates service↗2026-03-10

▶

🕵️Threat Intelligence

Wiz

CVE-2025-54820 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶