Critical severity9.8CISA KEVNVD Advisory· Published Dec 9, 2025· Updated Jun 9, 2026
CVE-2025-59718
CVE-2025-59718
Description
A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4.0 through 7.4.10, FortiProxy 7.2.0 through 7.2.14, FortiProxy 7.0.0 through 7.0.21, FortiSwitchManager 7.2.0 through 7.2.6, FortiSwitchManager 7.0.0 through 7.0.5 allows an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:fortinet:fortiproxy:7.6.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:fortinet:fortiproxy:7.6.3:*:*:*:*:*:*:*range: 7.6.0
- (no CPE)range: 7.6.0-7.6.3, 7.4.0-7.4.10, 7.2.0-7.2.14, 7.0.0-7.0.21
cpe:2.3:a:fortinet:fortiswitchmanager:7.2.6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:fortinet:fortiswitchmanager:7.2.6:*:*:*:*:*:*:*range: 7.2.0
- (no CPE)range: 7.2.0-7.2.6, 7.0.0-7.0.5
Patches
Vulnerability mechanics
References
4- arcticwolf.com/resources/blog/arctic-wolf-observes-malicious-sso-logins-following-disclosure-cve-2025-59718-cve-2025-59719/nvdThird Party Advisory
- cert-portal.siemens.com/productcert/html/ssa-864900.htmlnvdThird Party Advisory
- fortiguard.fortinet.com/psirt/FG-IR-25-647nvdVendor Advisory
- www.cisa.gov/known-exploited-vulnerabilities-catalognvdUS Government Resource
News mentions
3- No Zero-Day Tied to 80,000 Harvested Fortinet CredentialsGovInfoSecurity · Jun 22, 2026
- ⚡ Weekly Recap: Browser Bugs, EDR Killers, TV Botnet, OpenBSD Flaw, Android Trojan, and MoreThe Hacker News · Jun 22, 2026
- Fortinet Responds to FortiBleed CampaignSecurityWeek · Jun 22, 2026