Request a Demo
Rewterz
Multiple Adobe Substance Vulnerabilities
October 17, 2025
Rewterz
GuLoader Malspam Campaign – Active IOCs
October 17, 2025

Multiple Fortinet FortiOS Vulnerabilities

Severity

High

Analysis Summary

CVE-2025-58903 CVSS:7.5

Fortine FortiOS is vulnerable to a heap-based buffer overflow, caused by Null pointer dereference. By sending a specially crafted request, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.

CVE-2025-61895 CVSS:7.5

A vulnerability has been identified in Fortinet FortiOS (all versions >= 7.2.0 and < 7.2.5), FortiProxy (all versions >= 7.2.0 and < 7.2.5), FortiPAM (all versions >= 1.0.0 and < 1.0.3), FortiAuthenticator (all versions >= 7.2.0 and < 7.2.5), FortiSwitchManager (all versions >= 7.2.0 and < 7.2.5), FortiAnalyzer (all versions >= 7.2.0 and < 7.2.5), FortiManager (all versions >= 7.2.0 and < 7.2.5), FortiEDR (all versions >= 7.0.0 and < 7.0.1), FortiClient (all versions >= 6.4.0 and < 6.4.2), FortiSIEM (all versions >= 6.7.0 and < 6.7.1), FortiMail (all versions >= 7.0.0 and < 7.0.1), FortiWeb (all versions >= 7.0.0 and < 7.0.1), FortiSandbox (all versions >= 5.2.0 and < 5.2.1), FortiEDR (all versions >= 7.0.0 and < 7.0.1), FortiClient (all versions >= 6.4.0 and < 6.4.2), FortiSIEM (all versions >= 6.7.0 and < 6.7.1), FortiMail (all versions >= 7.0.0 and < 7.0.1), FortiWeb (all versions >= 7.0.0 and < 7.0.1), FortiSandbox (all versions >= 5.2.0 and < 5.2.1).

CVE-2025-61851 CVSS:7.2

This vulnerability allows remote attackers to bypass authentication on affected installations of FortiOS. Authentication is not required to exploit this vulnerability.

CVE-2025-61852 CVSS:7.5

A vulnerability has been identified in Fortinet FortiOS (all versions >= 7.2.0 and < 7.2.5), FortiProxy (all versions >= 7.2.0 and < 7.2.5), FortiPAM (all versions >= 1.0.0 and < 1.0.3), FortiAuthenticator (all versions >= 7.2.0 and < 7.2.5), FortiSwitchManager (all versions >= 7.2.0 and < 7.2.5), FortiAnalyzer (all versions >= 7.2.0 and < 7.2.5), FortiManager (all versions >= 7.2.0 and < 7.2.5), FortiEDR (all versions >= 7.0.0 and < 7.0.1), FortiClient (all versions >= 6.4.0 and < 6.4.2), FortiSIEM (all versions >= 6.7.0 and < 6.7.1), FortiMail (all versions >= 7.0.0 and < 7.0.1), FortiWeb (all versions >= 7.0.0 and < 7.0.1), FortiSandbox (all versions >= 5.2.0 and < 5.2.2), FortiEDR (all versions >= 7.0.0 and < 7.0.1), FortiClient (all versions >= 6.4.0 and < 6.4.2), FortiSIEM (all versions >= 6.7.0 and < 6.7.1), FortiMail (all versions >= 7.0.0 and < 7.0.1), FortiWeb (all versions >= 7.0.0 and < 7.0.1), FortiSandbox (all versions >= 5.2.0 and < 5.2.2).

Impact

  • Denial of Service
  • Gain Access

Indicators of Compromise

CVE

  • CVE-2025-58903

  • CVE-2025-61895

  • CVE-2025-61851

  • CVE-2025-61852

Affected Vendors

  • Fortinet

Affected Products

  • Fortinet FortiOS 7.4.0
  • Fortine FortiOS 7.6.0
  • Fortinet FortiOS 7.6.3
  • Fortinet FortiOS 7.4.8
  • Fortinet FortiOS 7.2.0 - 7.2.4
  • Fortinet FortiProxy
  • Fortinet FortiPAM
  • Fortinet FortiAuthenticator
  • Fortinet FortiOS 7.2.x

Remediation

Upgrade to the latest version of FortiOS, available from the Fortinet Website.

CVE-2025-58903

CVE-2025-61895

CVE-2025-61851

CVE-2025-61852