CVE-2025-59719

CRITICAL EXPLOITED

Fortinet Fortiweb < 7.4.9 - Signature Verification Bypass

Title source: rule

Description

An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9 may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message.

Exploits (1)

github SCANNER 2 stars

by moften · pythonpoc

https://github.com/moften/CVE-2025-59718-Fortinet-Poc

View Code ZIP pw:eip

References (1)

[Vendor Advisory] https://fortiguard.fortinet.com/psirt/FG-IR-25-647

Scores

CVSS v3 9.8

EPSS 0.0016

EPSS Percentile 36.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2025-12-15

ENISA EUVD EUVD-2025-202191

CWE

CWE-347

Status published

Products (5)

fortinet/fortiweb 8.0.0

fortinet/fortiweb 7.4.0 - 7.4.9

Fortinet/FortiWeb 7.4.0 - 7.4.9

Fortinet/FortiWeb 7.6.0 - 7.6.4

Fortinet/FortiWeb 8.0.0

Published Dec 09, 2025

Tracked Since Feb 18, 2026