Fixed Intel

CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Dec 23, 2025

CVE-2025-59718

High
EPSS 2.0%CISA KEV
Fortinet/Multiple Products

Description

Fortinet FortiOS, FortiSwitchMaster, FortiProxy, and FortiWeb contain an improper verification of cryptographic signature vulnerability that may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML message. Please be aware that CVE-2025-59719 pertains to the same problem and is mentioned in the same vendor advisory. Ensure to apply all patches mentioned in the advisory.

EPSS — Exploit Probability

2.0%

Higher than 83.4% of all CVEs

Required Action

https://fortiguard.fortinet.com/psirt/FG-IR-25-647 ; https://docs.fortinet.com/upgrade-tool/fortigate ; https://nvd.nist.gov/vuln/detail/CVE-2025-59718

Related Articles (1)

Industry News

FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials

Attackers exploit FortiGate vulnerabilities to steal LDAP credentials and breach networks, enabling AD access and malware deployment.

Mar 10, 2026

Risk Assessment

ELEVATED
In CISA KEV

Details

Severity
High
EPSS
2.0%
CISA KEV
Yes
Ransomware
Unknown
Articles
1

Timeline

Published

Dec 16, 2025

Added to KEV

Dec 16, 2025

Remediation Due

Dec 23, 2025

Affected Product

Fortinet

Multiple Products

View all Fortinet CVEs

External Links

NVD (NIST)CVE DetailsMITRE CVE