CVE-2025-58413

CWE-121 — Stack-based Buffer Overflow CWE-787 — Out-of-bounds Write4 documents4 sources

Severity

7.5HIGH

EPSS

0.0%

top 99.77%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortios Fortinet Fortisase

Timeline

PublishedNov 18

Description

A stack-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiOS 6.2 all versions, FortiOS 6.0 all versions, FortiSASE 25.3.b allows attacker to execute unauthorized code or commands via specially crafted packets

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 1.6 | Impact: 5.9

Affected Packages4 packages

▶NVDfortinet/fortios6.0.0 — 7.4.9+1

▶CVEListV5fortinet/fortios7.6.0 — 7.6.3+6

▶CVEListV5fortinet/fortisase25.3.b

▶NVDfortinet/fortisase25.3.89

🔴Vulnerability Details

GHSA

GHSA-fr69-2jfx-9jwf: A stack-based buffer overflow in Fortinet FortiOS 7↗2025-11-18

▶

CVEList

CVE-2025-58413: A stack-based buffer overflow vulnerability in Fortinet FortiOS 7↗2025-11-18

▶

📋Vendor Advisories

Fortinet

Stack buffer overflow in CAPWAP daemon↗2025-11-18

▶