CVE-2025-58903

LOW(2.7)

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

Risk Signal Score7/100 — NIEDRIG

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

2.7

Technische Schwere

Beschreibung

An Unchecked Return Value vulnerability [CWE-252] in Fortinet FortiOS version 7.6.0 through 7.6.3 and before 7.4.8 API allows an authenticated user to cause a Null Pointer Dereference, crashing the http daemon via a specialy crafted request.

Referenzen

https://fortiguard.fortinet.com/psirt/FG-IR-25-653
https://cert-portal.siemens.com/productcert/html/ssa-864900.html