Vulnerabilities

CVE-2025-58692

by Fred · 18/11/2025

An improper neutralization of special elements used in an SQL Command (“SQL Injection”) vulnerability [CWE-89] in Fortinet FortiVoice 7.2.0 through 7.2.2, FortiVoice 7.0.0 through 7.0.7 allows an authenticated attacker to execute unauthorized code or commands via specifically crafted HTTP or HTTPS requests.

More information : https://fortiguard.fortinet.com/psirt/FG-IR-25-666

Similar

Tags: Cybersecurity Alert