CVE-2025-55018

MEDIUM

Fortinet FortiOS 7.6.0, 7.4.0-7.4.9, 7.2.0-7.2.12, 7.0.0-7.0.18, 6.4.3-6.4.15 - HTTP Request Smuggling

Title source: llm

Description

An inconsistent interpretation of http requests ('http request smuggling') vulnerability in Fortinet FortiOS 7.6.0, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4.3 through 6.4.16 may allow an unauthenticated attacker to smuggle an unlogged http request through the firewall policies via a specially crafted header

References (2)

Core 2

Core References

Various Sources

https://fortiguard.fortinet.com/psirt/FG-IR-25-667

Vendor Advisory

https://cert-portal.siemens.com/productcert/html/ssa-975644.html

Scores

CVSS v3 5.8

EPSS 0.0035

EPSS Percentile 26.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-444

Status published

Products (7)

fortinet/fortios 7.6.0

fortinet/fortios 6.4.3 - 6.4.16

Fortinet/FortiOS 6.4.3 - 6.4.16

Fortinet/FortiOS 7.0.0 - 7.0.19

Fortinet/FortiOS 7.2.0 - 7.2.13

Fortinet/FortiOS 7.4.0 - 7.4.9

Fortinet/FortiOS 7.6.0

Published Feb 10, 2026

Tracked Since Feb 18, 2026