AI description
CVE-2025-59719 is a vulnerability affecting Fortinet FortiWeb versions 8.0.0, 7.6.0 through 7.6.4, and 7.4.0 through 7.4.9. It stems from an improper verification of cryptographic signatures. This vulnerability could allow an unauthenticated attacker to bypass the FortiCloud Single Sign-On (SSO) login authentication. This can be achieved by sending a crafted Security Assertion Markup Language (SAML) response message to the targeted appliance.
- Description
- An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9 may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message.
- Source
- psirt@fortinet.com
- NVD status
- Analyzed
- Products
- fortiweb
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- psirt@fortinet.com
- CWE-347
- Hype score
- Not currently trending
Fortinet Patches Critical Authentication Bypass Vulnerabilities Tracked as CVE-2025-59718 and CVE-2025-59719 (CVSS score of 9.8), the two bugs are described as improper verification of cryptographic signature issues. They impact FortiOS, FortiWeb, FortiProxy, and https://t.co/Eo
@johndjohnson
12 Dec 2025
53 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴 CVE-2025-59718 & CVE-2025-59719: Fortinet FortiCloud SSO Auth Bypass Fortinet's got two critical flaws (CVSS 9.6 and 9.8) in FortiCloud SSO allowing complete authentication bypass. What's nasty: CVE-2025-59718 exploits improper session validation—attackers craft ma
@the_c_protocol
11 Dec 2025
105 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨🚨CVE-2025-59718 & CVE-2025-59719: FortiCloud SSO Authentication Bypass Unauthenticated attackers may bypass FortiCloud SSO by abusing crafted SAML messages when the feature is enabled. ZoomEye Dork👉app="Fortinet FortiSwitch" || app="Fortinet FortiWeb" || app="Forti
@zoomeye_team
11 Dec 2025
8509 Impressions
35 Retweets
120 Likes
47 Bookmarks
0 Replies
0 Quotes
🚨 Upozorňujeme na kritické zranitelnosti v produktech Fortinet, CVE-2025-59718 a CVE-2025-59719. Zranitelnosti umožňují neautentizovanému útočníkovi obejít FortiCloud SSO autentizaci prostřednictvím podvržené SAML zprávy. Pokud je funkce FortiCloud SSO povolena,
@GOVCERT_CZ
10 Dec 2025
824 Impressions
2 Retweets
5 Likes
1 Bookmark
0 Replies
0 Quotes
❗ ALERT ❗ We’re aware of critical vulnerabilities in Multiple Fortinet Products: - CVE-2025-59718 - CVE-2025-59719 Read the full alert 👉 https://t.co/stokNdKHFl https://t.co/twizd5yGHJ
@7thGensec
10 Dec 2025
97 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Here we go, another crits on fori. Authentication bypass on FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager when SAML is on CVE-2025-59718 CVE-2025-59719 https://t.co/F8lCILYD8t https://t.co/sEGuCaVqU2
@h4x0r_dz
10 Dec 2025
11909 Impressions
22 Retweets
185 Likes
63 Bookmarks
1 Reply
1 Quote
Here we go, another crits on fori. Authentication bypass on FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager when SAML is on CVE-2025-59718 CVE-2025-59719 https://t.co/3rr4q98jE4
@h4x0r_dz
10 Dec 2025
53 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Critical Authentication Bypass Vulnerabilities have been discovered in multiple #Fortinet products. Apply Updates! #CVE-2025-59718 #CVE-2025-59719 https://t.co/x9MmdenMZE
@NCIIPC
10 Dec 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨Alert🚨:CVE-2025-59718 & CVE-2025-59719 : Critical Fortinet Flaw Risks Unauthenticated Admin Bypass via FortiCloud SSO SAML Forgery 📊2.3M Services are found on the https://t.co/ysWb28BTvF yearly. 🔗Hunter Link:https://t.co/Hvg185t0p0 👇Query HUNTER : https://t.co
@HunterMapping
10 Dec 2025
6270 Impressions
29 Retweets
109 Likes
52 Bookmarks
3 Replies
1 Quote
Fortinet warns of critical FortiCloud SSO login auth bypass flaws (CVE-2025-59718 and CVE-2025-59719) https://t.co/0I1tm8YcNd #patchmanagement
@eyalestrin
10 Dec 2025
133 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
【今日のForti】フォーティネットの定例更新。今回も重大(Critical)な脆弱性あり。暗号署名検証の不備に起因するFortiCloud SSOログインの認証回避。FortiOS, FortiProxy, FortiSwitchManagerではCVE-2025-59718、FortiWebではCVE-2025-5
@__kokumoto
9 Dec 2025
994 Impressions
0 Retweets
4 Likes
4 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "87CA4C4B-2701-4DEB-BB36-DBBFBD19D48A",
"versionEndIncluding": "7.4.9",
"versionStartIncluding": "7.4.0"
},
{
"criteria": "cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8473958D-E679-4501-8D78-5350FA8FC1FC",
"versionEndIncluding": "7.6.4",
"versionStartIncluding": "7.6.0"
},
{
"criteria": "cpe:2.3:a:fortinet:fortiweb:8.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6578F992-46E7-422C-A837-5A7F0E966AB6"
}
],
"operator": "OR"
}
]
}
]