CVE-2025-62826 in FortiOS情報

要約

〜によって MITRE • 2026年07月14日

An Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') vulnerability [CWE-113] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4 all versions, FortiOS 7.2 all versions, FortiProxy 7.6.0 through 7.6.4, FortiProxy 7.4 all versions, FortiProxy 7.2 all versions may allow an attacker able to intercept and modify a user's captive portal authentication request to inject arbitrary headers via crafted HTTP requests.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

責任者

Fortinet

予約する

2025年10月23日

モデレーション

承諾済み

エントリ

VDB-378333

EPSS

0.00000

アクティビティ

中間

ソース

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!