Fortinet FortiOS Null Pointer Dereference Vulnerability Leading to Denial-of-Service

Vulnerability

A null pointer dereference vulnerability has been identified in Fortinet FortiOS. This issue is present in versions 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, as well as all versions of 7.0, 6.4, 6.2, and 6.0. The vulnerability allows an attacker to trigger a denial-of-service condition by sending a crafted HTTP request.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the system to become unresponsive or unavailable.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Fortinet FortiOS Null Pointer Dereference Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Affected Products

Fortinet FortiOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating