Forwarded from Taiwan Computer Network Crisis Management and Coordination Center: Cybersecurity Alert TWCERTCC-200-202512-00000003

[Content Description]
【CVE-2025-59718, CVSS: 9.8】 FortiOS, FortiProxy, and FortiSwitchManager contain an authentication bypass vulnerability. Unauthenticated attackers can use a specially crafted SAML message to bypass the FortiCloud SSO authentication mechanism.

【CVE-2025-59719, CVSS: 9.8】 FortiWeb contains an authentication bypass vulnerability. Unauthenticated attackers can use a specially crafted SAML message to bypass the FortiCloud SSO authentication mechanism.

[Affected Platforms]
【CVE-2025-59718】
FortiOS versions 7.6.0 to 7.6.3
FortiOS versions 7.4.0 to 7.4.8
FortiOS versions 7.2.0 to 7.2.11
FortiOS versions 7.0.0 to 7.0.17
FortiProxy versions 7.6.0 to 7.6.3
FortiProxy versions 7.4.0 to 7.4.10
FortiProxy versions 7.2.0 to 7.2.14
FortiProxy versions 7.0.0 to 7.0.21
FortiSwitchManager versions 7.2.0 to 7.2.6
FortiSwitchManager versions 7.0.0 to 7.0.5

【CVE-2025-59719】
FortiWeb Versions 7.4.0 to 7.4.9
FortiWeb versions 7.6.0 to 7.6.4
FortiWeb version 8.0.0

[Recommended Actions]
【CVE-2025-59718】 Please update to the following versions:
FortiOS 7.6.4 and later
FortiOS 7.4.9 and later
FortiOS 7.2.12 and later
FortiOS 7.0.18 and later
FortiProxy 7.6.4 and later
FortiProxy 7.4.11 and later
FortiProxy 7.2.15 and later
FortiProxy 7.0.22 and later
FortiSwitchManager 7.2.7 and later
FortiSwitchManager 7.0.6 and later

[CVE-2025-59719] Please update to the following versions:
FortiWeb 7.4.10 or later
FortiWeb 7.6.5 or later
FortiWeb 8.0.1 or later