Alerts
10 Jun 2025
NA - CVE-2025-22251 - An improper restriction of communication...
An improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow...
10 Jun 2025
NA - CVE-2025-22254 - An Improper Privilege Management vulnerability...
An Improper Privilege Management vulnerability [CWE-269] affecting Fortinet FortiOS version 7.6.0 through 7.6.1, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10, 7.0.0 through 7.0.16 and before 6.4.15,...
10 Jun 2025
NA - CVE-2025-22256 - A improper handling of insufficient permissions...
A improper handling of insufficient permissions or privileges in Fortinet FortiPAM 1.4.0 through 1.4.1, 1.3.0, 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiSRA 1.4.0 through 1.4.1 allows...
10 Jun 2025
Medium - CVE-2025-24065 - Out-of-bounds read in Windows Storage...
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
10 Jun 2025
Medium - CVE-2025-24068 - Buffer over-read in Windows Storage Management...
Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
10 Jun 2025
Medium - CVE-2025-24069 - Out-of-bounds read in Windows Storage...
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
10 Jun 2025
NA - CVE-2025-24471 - An Improper Certificate Validation...
An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked...