CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Dec 23, 2025

High

CISA KEV

CVE-2025-59718

Fortinet—Multiple Products

Fortinet FortiOS, FortiSwitchMaster, FortiProxy, and FortiWeb contain an improper verification of cryptographic signature vulnerability that may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML message. Please be aware that CVE-2025-59719 pertains to the same problem and is mentioned in the same vendor advisory. Ensure to apply all patches mentioned in the advisory.

Required Action

https://fortiguard.fortinet.com/psirt/FG-IR-25-647 ; https://docs.fortinet.com/upgrade-tool/fortigate ; https://nvd.nist.gov/vuln/detail/CVE-2025-59718

Vulnerability Overview

Severity: High
CISA KEV: Yes
Ransomware: Unknown
Published: Dec 16, 2025
KEV Added: Dec 16, 2025
Due Date: Dec 23, 2025
Related Articles: 0

Vendor

Fortinet

Multiple Products