CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-32766

A stack-based buffer overflow vulnerability [CWE-121] in Fortinet FortiWeb CLI version 7.6.0 through 7.6.3 and before 7.4.8 allows a privileged attacker to execute arbitrary code or commands via crafted CLI commands

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.8%

CVSS Severity

CVSS v3 Score 6.4

References

https://fortiguard.fortinet.com/psirt/FG-IR-25-383

Products affected by CVE-2025-32766

Fortinet » Fortiweb » Version: 7.4.1

cpe:2.3:a:fortinet:fortiweb:7.4.1
Fortinet » Fortiweb » Version: 7.4.2

cpe:2.3:a:fortinet:fortiweb:7.4.2
Fortinet » Fortiweb » Version: 7.4.3

cpe:2.3:a:fortinet:fortiweb:7.4.3
Fortinet » Fortiweb » Version: 7.4.4

cpe:2.3:a:fortinet:fortiweb:7.4.4
Fortinet » Fortiweb » Version: 7.4.5

cpe:2.3:a:fortinet:fortiweb:7.4.5
Fortinet » Fortiweb » Version: 7.4.6

cpe:2.3:a:fortinet:fortiweb:7.4.6
Fortinet » Fortiweb » Version: 7.4.7

cpe:2.3:a:fortinet:fortiweb:7.4.7
Fortinet » Fortiweb » Version: 7.4.8

cpe:2.3:a:fortinet:fortiweb:7.4.8
Fortinet » Fortiweb » Version: 7.6.0

cpe:2.3:a:fortinet:fortiweb:7.6.0
Fortinet » Fortiweb » Version: 7.6.1

cpe:2.3:a:fortinet:fortiweb:7.6.1
Fortinet » Fortiweb » Version: 7.6.2

cpe:2.3:a:fortinet:fortiweb:7.6.2
Fortinet » Fortiweb » Version: 7.6.3

cpe:2.3:a:fortinet:fortiweb:7.6.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-32766

Products

Pricing

Contact Us