CVE-2025-47856 | Fortinet FortiVoice up to 6.4.10/7.0.6/7.2.0 HTTP/HTTPS/CLI os command injection (FG-IR-25-250)

Inserito da Angelo Barbosa | Ott 14, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Fortinet FortiVoice up to 6.4.10/7.0.6/7.2.0. This affects an unknown function of the component HTTP/HTTPS/CLI. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2025-47856. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-47856 | Fortinet FortiVoice up to 6.4.10/7.0.6/7.2.0 HTTP/HTTPS/CLI os command injection (FG-IR-25-250)

Post correlati

CVE-2024-27332 | Tracker Software PDF-XChange Editor JPG File Parser out-of-bounds

CVE-2024-40642 | netty-incubator-codec-ohttp up to 0.0.12 HTTP Protocol readRequestHead server-side request forgery (GHSA-q8f2-hxq5-cp4h)

CVE-2024-21631 | Vapor up to 4.89.x vapor_urlparser_parse unmaintained third party components (GHSA-r6r4-5pr8-gjcp)

CVE-2024-51448 | IBM Robotic Process Automation up to 21.0.7.17/23.0.18 nssm.exe insecure inherited permissions