How severe is CVE-2025-58693?

CVE-2025-58693 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2025-58693

Name: fortivoice
Author: fortinet

6.5MEDIUM

An improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiVoice 7.2.0 through 7.2.2, FortiVoice 7.0.0 through 7.0.7 allows a privileged attacker

Publicado: 1/13/2026Actualizado: 1/14/2026

Descripción

An improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiVoice 7.2.0 through 7.2.2, FortiVoice 7.0.0 through 7.0.7 allows a privileged attacker to delete files from the underlying filesystem via crafted HTTP or HTTPs requests.

Análisis IAImpulsado por IA

Productos Afectados

fortinetfortivoice

Referencias

https://fortiguard.fortinet.com/psirt/FG-IR-25-778
Vendor Advisory