November 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Multiple Adobe Substance Vulnerabilities
October 17, 2025GuLoader Malspam Campaign – Active IOCs
October 17, 2025Multiple Adobe Substance Vulnerabilities
October 17, 2025GuLoader Malspam Campaign – Active IOCs
October 17, 2025
Severity
High
Analysis Summary
CVE-2025-58903 CVSS:7.5
Fortine FortiOS is vulnerable to a heap-based buffer overflow, caused by Null pointer dereference. By sending a specially crafted request, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.
CVE-2025-61895 CVSS:7.5
A vulnerability has been identified in Fortinet FortiOS (all versions >= 7.2.0 and < 7.2.5), FortiProxy (all versions >= 7.2.0 and < 7.2.5), FortiPAM (all versions >= 1.0.0 and < 1.0.3), FortiAuthenticator (all versions >= 7.2.0 and < 7.2.5), FortiSwitchManager (all versions >= 7.2.0 and < 7.2.5), FortiAnalyzer (all versions >= 7.2.0 and < 7.2.5), FortiManager (all versions >= 7.2.0 and < 7.2.5), FortiEDR (all versions >= 7.0.0 and < 7.0.1), FortiClient (all versions >= 6.4.0 and < 6.4.2), FortiSIEM (all versions >= 6.7.0 and < 6.7.1), FortiMail (all versions >= 7.0.0 and < 7.0.1), FortiWeb (all versions >= 7.0.0 and < 7.0.1), FortiSandbox (all versions >= 5.2.0 and < 5.2.1), FortiEDR (all versions >= 7.0.0 and < 7.0.1), FortiClient (all versions >= 6.4.0 and < 6.4.2), FortiSIEM (all versions >= 6.7.0 and < 6.7.1), FortiMail (all versions >= 7.0.0 and < 7.0.1), FortiWeb (all versions >= 7.0.0 and < 7.0.1), FortiSandbox (all versions >= 5.2.0 and < 5.2.1).
CVE-2025-61851 CVSS:7.2
This vulnerability allows remote attackers to bypass authentication on affected installations of FortiOS. Authentication is not required to exploit this vulnerability.
CVE-2025-61852 CVSS:7.5
A vulnerability has been identified in Fortinet FortiOS (all versions >= 7.2.0 and < 7.2.5), FortiProxy (all versions >= 7.2.0 and < 7.2.5), FortiPAM (all versions >= 1.0.0 and < 1.0.3), FortiAuthenticator (all versions >= 7.2.0 and < 7.2.5), FortiSwitchManager (all versions >= 7.2.0 and < 7.2.5), FortiAnalyzer (all versions >= 7.2.0 and < 7.2.5), FortiManager (all versions >= 7.2.0 and < 7.2.5), FortiEDR (all versions >= 7.0.0 and < 7.0.1), FortiClient (all versions >= 6.4.0 and < 6.4.2), FortiSIEM (all versions >= 6.7.0 and < 6.7.1), FortiMail (all versions >= 7.0.0 and < 7.0.1), FortiWeb (all versions >= 7.0.0 and < 7.0.1), FortiSandbox (all versions >= 5.2.0 and < 5.2.2), FortiEDR (all versions >= 7.0.0 and < 7.0.1), FortiClient (all versions >= 6.4.0 and < 6.4.2), FortiSIEM (all versions >= 6.7.0 and < 6.7.1), FortiMail (all versions >= 7.0.0 and < 7.0.1), FortiWeb (all versions >= 7.0.0 and < 7.0.1), FortiSandbox (all versions >= 5.2.0 and < 5.2.2).
Impact
- Denial of Service
- Gain Access
Indicators of Compromise
CVE
CVE-2025-58903
CVE-2025-61895
CVE-2025-61851
CVE-2025-61852
Affected Vendors
- Fortinet
Affected Products
- Fortinet FortiOS 7.4.0
- Fortine FortiOS 7.6.0
- Fortinet FortiOS 7.6.3
- Fortinet FortiOS 7.4.8
- Fortinet FortiOS 7.2.0 - 7.2.4
- Fortinet FortiProxy
- Fortinet FortiPAM
- Fortinet FortiAuthenticator
- Fortinet FortiOS 7.2.x
Remediation
Upgrade to the latest version of FortiOS, available from the Fortinet Website.