Vulnerabilities

CVE-2025-47857

by Fred · 12/08/2025

A improper neutralization of special elements used in an os command (‘os command injection’) vulnerability [CWE-78] in Fortinet FortiWeb CLI version 7.6.0 through 7.6.3 and before 7.4.8 allows a privileged attacker to execute arbitrary code or command via crafted CLI commands.

More information : https://fortiguard.fortinet.com/psirt/FG-IR-25-253

Similar

Tags: Cybersecurity Alert