CVE-2025-58412
published 2025-11-19CVE-2025-58412: A improper neutralization of script-related html tags in a web page (basic xss) vulnerability in Fortinet FortiADC 8.0.0, FortiADC 7.6.0 through 7.6.3…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
A improper neutralization of script-related html tags in a web page (basic xss) vulnerability in Fortinet FortiADC 8.0.0, FortiADC 7.6.0 through 7.6.3, FortiADC 7.4 all versions, FortiADC 7.2 all versions may allow attacker to execute unauthorized code or commands via crafted URL.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | >= 7.2.0 < 7.6.4 | 7.6.4 |
| fortinet | fortiadc | 7.2.0 – 7.2.8 | — |
| fortinet | fortiadc | 7.4.0 – 7.4.9 | — |
| fortinet | fortiadc | 7.6.0 – 7.6.3 | — |
| fortinet | fortinet | — | — |