Cybersecurity Vulnerabilities

Overview CVE-2025-58034 is a high-severity OS Command Injection vulnerability affecting Fortinet FortiWeb web application firewalls. This vulnerability allows an authenticated attacker to execute arbitrary code on the underlying system by injecting malicious commands through crafted HTTP requests or CLI commands. Successful exploitation can lead to complete system compromise. Technical Details The vulnerability stems from improper … Read more

Overview A critical security vulnerability, identified as CVE-2025-56527, has been discovered in Kotaemon version 0.11.0. This vulnerability involves the storage of user passwords in plaintext within the client’s localStorage. This means that if an attacker gains access to the client’s browser or localStorage data, they can easily retrieve user passwords, leading to significant security risks. … Read more

Overview CVE-2025-56526 is a cross-site scripting (XSS) vulnerability found in Kotaemon version 0.11.0. This vulnerability allows attackers to execute arbitrary JavaScript code within the context of a user’s browser by injecting malicious code through a specially crafted PDF file. Successful exploitation of this vulnerability could lead to session hijacking, data theft, and other malicious activities. … Read more

Overview CVE-2025-55796 describes a critical vulnerability in the openml/openml.org web application, specifically version v2.0.20241110. This vulnerability stems from the use of predictable MD5-based tokens in essential user workflows such as signup confirmation, password resets, email confirmation resends, and email change confirmation. Due to the predictable nature of these tokens, remote attackers can potentially brute-force them … Read more

Overview CVE-2025-54972 is a medium-severity vulnerability affecting Fortinet FortiMail email security gateways. This vulnerability involves an improper neutralization of CRLF (Carriage Return Line Feed) sequences, also known as a CRLF injection, which could allow an attacker to inject arbitrary headers into HTTP responses. The vulnerability exists in FortiMail versions 7.6.0 through 7.6.3, 7.4.0 through 7.4.5, … Read more

Overview CVE-2025-54971 is a medium severity vulnerability affecting Fortinet FortiADC application delivery controllers. This vulnerability allows an attacker with read-only administrative privileges to potentially access sensitive information, specifically external resource passwords, by analyzing the system logs. This exposure could lead to unauthorized access to external resources configured within the FortiADC. Technical Details The vulnerability resides … Read more

Overview CVE-2025-54821 is a reported Improper Privilege Management vulnerability affecting multiple Fortinet products, including FortiOS, FortiPAM, and FortiProxy. This vulnerability allows an authenticated administrator to potentially bypass the trusted host policy through the use of a crafted Command Line Interface (CLI) command. Technical Details The vulnerability, classified as CWE-269 (Improper Privilege Management), stems from insufficient … Read more

Published: 2025-11-18 Overview A concerning vulnerability, identified as CVE-2025-54660, has been discovered in Fortinet’s FortiClientWindows application. This medium-severity flaw could allow a local attacker to potentially retrieve saved VPN user passwords. The vulnerability stems from active debug code left in the application, allowing for step-by-step execution and data extraction. Technical Details CVE-2025-54660 resides in the … Read more

Overview A high-severity vulnerability, identified as CVE-2025-53843, affects multiple versions of Fortinet FortiOS. This stack-based buffer overflow vulnerability could allow a remote attacker to execute unauthorized code or commands on a vulnerable system by sending specially crafted packets. This poses a significant risk to organizations using affected FortiOS versions. Technical Details CVE-2025-53843 is a stack-based … Read more

Overview CVE-2025-53360 is a medium severity vulnerability affecting the Database Inventory plugin for GLPI (Gestion Libre de Parc Informatique). This plugin “manages” the Teclib’ inventory agents, enabling database inventory on workstations. Prior to version 1.0.3, any authenticated user, regardless of their role or permissions, could send requests directly to inventory agents. This could potentially lead … Read more