Fortinet Product Security Update Advisory (CVE-2025-64446)

Nov 17 2025

Overview

We have released security updates to fix vulnerabilities in Fortinet products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-64446

FortiWeb Versions: 8.0.0 and later and 8.0.1 and earlier
FortiWeb versions: 7.6.0 and earlier and 7.6.4 and earlier
FortiWeb version: 7.4.0 or later and 7.4.9 or earlier
FortiWeb version: 7.2.0 or later and 7.2.11 or earlier
FortiWeb version: 7.0.0 or later and 7.0.11 or earlier

Resolved Vulnerabilities

Relative Path Traversal Vulnerability in FortiWeb (CVE-2025-64446)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-64446

FortiWeb version: 8.0.2 and later
FortiWeb version: 7.6.5 and later
FortiWeb Version: 7.4.10 and later
FortiWeb version: 7.2.12 and later
FortiWeb version: 7.0.12 and later

References

[1] Path confusion vulnerability in GUI
https://fortiguard.fortinet.com/psirt/FG-IR-25-910

Fortinet Product Security Update Advisory (CVE-2025-64446)

MS Family November 2025 Routine Security Update Advisory

Microsoft Edge browser (142.0.3595.80) version security update advisory

Tags:

MS Family November 2025 Routine Security Update Advisory

Microsoft Edge browser (142.0.3595.80) version security update advisory