IM
IronMonkey Threat Research

CVE-2025-57740 HIGH

Published: 2025-10-14 | Last Modified: 2026-06-09 | Status: Modified

Description

An Heap-based Buffer Overflow vulnerability [CWE-122] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.0 all versions, 6.4 all versions; FortiPAM version 1.5.0, version 1.4.2 and below, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions and FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all versions, 7.0 all versions RDP bookmark connection may allow an authenticated user to execute unauthorized code via crafted requests.

CVSS Metrics

Base Score: 8.8 (HIGH)

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack VectorNETWORK
Attack ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
ScopeUNCHANGED
Confidentiality ImpactHIGH
Integrity ImpactHIGH
Availability ImpactHIGH

Source: [email protected]

Type: Primary

Exploitability Score: 2.8

Impact Score: 5.9

Weaknesses

Source Type Description
[email protected] Secondary
en CWE-122

Affected Products

Vendor Product Version Update Type
fortinet fortiproxy * <built-in method update of dict object at 0x7d1e643c09c0> Application
fortinet fortiproxy * <built-in method update of dict object at 0x7d1ea09b5300> Application
fortinet fortipam * <built-in method update of dict object at 0x7d1ea0fae1c0> Operating System
fortinet fortipam 1.5.0 <built-in method update of dict object at 0x7d1e64be6c00> Operating System
fortinet fortios * <built-in method update of dict object at 0x7d1e5feb9e40> Operating System
fortinet fortios * <built-in method update of dict object at 0x7d1e5feba380> Operating System
fortinet fortios * <built-in method update of dict object at 0x7d1e643c34c0> Operating System

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:fortinet:fortiproxy:*:*:*:*:*:*:*:*
Yes cpe:2.3:a:fortinet:fortiproxy:*:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:fortinet:fortipam:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:fortinet:fortipam:1.5.0:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*

References

Notification
Message here