Home

Description

A buffer copy without checking size of input ('classic buffer overflow') in Fortinet FortiExtender 7.6.0 through 7.6.1, FortiExtender 7.4.0 through 7.4.6, FortiExtender 7.2 all versions, FortiExtender 7.0 all versions may allow an authenticated user to execute arbitrary code or commands via crafted CLI commands.

PUBLISHED Reserved 2025-04-29 | Published 2025-11-18 | Updated 2025-11-18 | Assigner fortinet




MEDIUM: 6.3CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:F/RL:U/RC:C

Problem types

Escalation of privilege

Product status

Default status
unaffected

7.6.0 (semver)
affected

7.4.0 (semver)
affected

7.2.0 (semver)
affected

7.0.0 (semver)
affected

References

fortiguard.fortinet.com/psirt/FG-IR-25-251

cve.org (CVE-2025-46776)

nvd.nist.gov (CVE-2025-46776)

Download JSON