Server-Side Request Forgery Vulnerability in Fortinet FortiSOAR Products
CVE-2025-59809

4.1MEDIUM

Key Information:

Vendor: Fortinet
Status: Fortisoar On-premise; Fortisoar Paas
Vendor: CVE Published:; 14 April 2026

What is CVE-2025-59809?

A server-side request forgery (SSRF) vulnerability exists in multiple versions of Fortinet FortiSOAR. This flaw allows an authenticated attacker to send crafted requests that enable them to discover services running on local ports, potentially exposing sensitive information. It affects several versions of both the FortiSOAR PaaS and on-premise platforms, making it critical for users to assess their security posture and apply necessary updates.

Affected Version(s)

FortiSOAR on-premise 7.6.4

FortiSOAR on-premise 7.6.0 <= 7.6.2

FortiSOAR on-premise 7.5.0 <= 7.5.2

References

https://fortiguard.fortinet.com/psirt/FG-IR-26-103

CVSS V3.1

Score:

4.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 14, 2026
Vulnerability Reserved
Sep 22, 2025

CVE-2025-59809 Data

JSON