Vulnerability Details CVE-2025-48839
An Out-of-bounds Write vulnerability [CWE-787] in FortiADC 8.0.0, 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2 all versions may allow an authenticated attacker to execute arbitrary code via specially crafted HTTP requests.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.1%
CVSS Severity
CVSS v3 Score 6.6
Products affected by CVE-2025-48839
-
cpe:2.3:a:fortinet:fortiadc:6.2.0
-
cpe:2.3:a:fortinet:fortiadc:6.2.1
-
cpe:2.3:a:fortinet:fortiadc:6.2.2
-
cpe:2.3:a:fortinet:fortiadc:6.2.3
-
cpe:2.3:a:fortinet:fortiadc:6.2.4
-
cpe:2.3:a:fortinet:fortiadc:6.2.5
-
cpe:2.3:a:fortinet:fortiadc:6.2.6
-
cpe:2.3:a:fortinet:fortiadc:7.0.0
-
cpe:2.3:a:fortinet:fortiadc:7.0.1
-
cpe:2.3:a:fortinet:fortiadc:7.0.2
-
cpe:2.3:a:fortinet:fortiadc:7.0.3
-
cpe:2.3:a:fortinet:fortiadc:7.0.4
-
cpe:2.3:a:fortinet:fortiadc:7.0.5
-
cpe:2.3:a:fortinet:fortiadc:7.1.0
-
cpe:2.3:a:fortinet:fortiadc:7.1.1
-
cpe:2.3:a:fortinet:fortiadc:7.1.2
-
cpe:2.3:a:fortinet:fortiadc:7.1.3
-
cpe:2.3:a:fortinet:fortiadc:7.1.4
-
cpe:2.3:a:fortinet:fortiadc:7.1.5
-
cpe:2.3:a:fortinet:fortiadc:7.2.0
-
cpe:2.3:a:fortinet:fortiadc:7.2.1
-
cpe:2.3:a:fortinet:fortiadc:7.2.2
-
cpe:2.3:a:fortinet:fortiadc:7.2.3
-
cpe:2.3:a:fortinet:fortiadc:7.2.4
-
cpe:2.3:a:fortinet:fortiadc:7.2.5
-
cpe:2.3:a:fortinet:fortiadc:7.2.6
-
cpe:2.3:a:fortinet:fortiadc:7.2.7
-
cpe:2.3:a:fortinet:fortiadc:7.2.8
-
cpe:2.3:a:fortinet:fortiadc:7.4.0
-
cpe:2.3:a:fortinet:fortiadc:7.4.1
-
cpe:2.3:a:fortinet:fortiadc:7.4.2
-
cpe:2.3:a:fortinet:fortiadc:7.4.3
-
cpe:2.3:a:fortinet:fortiadc:7.4.4
-
cpe:2.3:a:fortinet:fortiadc:7.4.5
-
cpe:2.3:a:fortinet:fortiadc:7.4.6
-
cpe:2.3:a:fortinet:fortiadc:7.4.7
-
cpe:2.3:a:fortinet:fortiadc:7.6.0
-
cpe:2.3:a:fortinet:fortiadc:7.6.1
-
cpe:2.3:a:fortinet:fortiadc:7.6.2
-
cpe:2.3:a:fortinet:fortiadc:8.0.0