CVE-2025-64157 – Fortinet FortiOS Format String Vulnerability

CVE ID : CVE-2025-64157

Published : Feb. 10, 2026, 3:39 p.m. | 42 minutes ago

Description : A use of externally-controlled format string vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0 all versions allows an authenticated admin to execute unauthorized code or commands via specifically crafted configuration.

Severity: 6.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…