Fortinet FortiWeb

NewsSecurity Vulnerabilities

Fortinet FortiWeb cat_cgi_paths Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2026-40688)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fortinet FortiWeb. Authentication is required to exploit this vulnerability.

Read More
NewsSecurity Vulnerabilities

Fortinet FortiWeb ApacheCookie_parse Improper Verification of Cryptographic Signature Authentication Bypass Vulnerability (CVE-2025-64447)

– This vulnerability allows remote attackers to bypass authentication on affected installations of Fortinet FortiWeb.

Read More
NewsSecurity Vulnerabilities

Fortinet FortiWeb _cmf_get_config_file_path Directory Traversal Information Disclosure Vulnerability (CVE-2025-53609)

– This vulnerability allows remote attackers to disclose sensitive information on affected installations of Fortinet FortiWeb.

Read More
NewsSecurity Vulnerabilities

Fortinet FortiWeb cgi_httpcontentrouting_post Directory Traversal Remote Code Execution Vulnerability (CVE-2025-25254)

CVE-2025-25254- This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fortinet FortiWeb.

Read More