ГлавнаяУязвимости → CVE-2025-59719
9.8критическая

CVE-2025-59719

Описание

An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9 may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message.

Затрагиваемое ПО
Fortinet Fortiweb
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://fortiguard.fortinet.com/psirt/FG-IR-25-647https://cert-portal.siemens.com/productcert/html/ssa-864900.html