CVE-2025-46776
Last modified
CVE-2025-46776 is a high-severity vulnerability rated 7.8/10 on the CVSS scale. A buffer copy without checking size of input ('classic buffer overflow') vulnerability in Fortinet FortiExtender 7.6.0 through 7.6.1, FortiExtender 7.4.0 through 7.4.6, FortiExtender 7.2 all versions, FortiExtender 7.0 all versions may allow an authenticated user to execute arbitrary code or commands via crafted CLI commands.. EPSS estimates a 0.14% chance of exploitation in the next 30 days.
Description
A buffer copy without checking size of input ('classic buffer overflow') vulnerability in Fortinet FortiExtender 7.6.0 through 7.6.1, FortiExtender 7.4.0 through 7.4.6, FortiExtender 7.2 all versions, FortiExtender 7.0 all versions may allow an authenticated user to execute arbitrary code or commands via crafted CLI commands.
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Fortinet | Fortiextender Firmware | >= 7.0.0, < 7.4.8 |
| Fortinet | Fortiextender Firmware | >= 7.6.0, < 7.6.3 |
References
- https://fortiguard.fortinet.com/psirt/FG-IR-25-251Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2025-46776?
How severe is CVE-2025-46776?
How do I fix CVE-2025-46776?
Are you affected by CVE-2025-46776?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST