Technical Service Center

No. Title CVE ID Severity Model 1 TACACS+ 인증 우회 CVE-2025-22252 Critical FortiOS/FortiProxy/ FortiSwtichManager 2 XPC 서비스의 로컬 권한 상승 CVE-2025-25251 High FortiClientMac 3 글로벌 위협 피드의 무단 수정 CVE-2024-54020 Low FortiManager 4 API의 스택 기반 버퍼 오버플로 취약점 CVE-2025-32756 Critical FortiCamaer/FortiMail/ FortiNDR/FortiRecorder/FortiVoice 5 공개적으로 접근 가능한 FCT 설치 디렉토리 인덱스 CVE-2025-24473 Medium FortiClientWindows 6 Node.JS 환경 변수로 인한 코드 실행 CVE-2024-35281 Low FortiClientMac/ FortiVoiceUCDesktop 7 보안 패브릭 루트의 서비스 거부 CVE-2025-47294 Medium FortiOS 8 시스템 로그에 민감한 정보 삽입 CVE-2025-46777 Low FortiPortal 9 업로드 메시지의 경로 탐색 CVE-2025-22859 Medium FortiClientEMS 10 FGFM의 버퍼 오버리드 CVE-2025-47295 Low FortiOS 1. TACACS+ 인증 우회(https://fortiguard.fortinet.com/psirt/FG-IR-24-472) FortiOS, FortiProxy 및 FortiSwitchManager TACACS+에서 중요 기능에 대한 인증이 누락된 취약점[CWE-306]이 있는데, 인증을 위해 원격 TACACS+ 서버를 사용하도록 구성된 이 서버 자체가 ASCII 인증을 사용하도록 구성된 경우, 기존 관리자 계정을 알고 있는 공격자가 인증 우회를 통해 유효한 관리자로 장치에 액세스할 수 있습니다. Version Affected Solution FortiOS 7.6 7.6.0 Upgrade to 7.6.1 or above FortiOS 7.4 7.4.4 through 7.4.6 Upgrade to 7.4.7 or above FortiOS 7.2 Not affected Not Applicable FortiOS 7.0 Not affected Not Applicable FortiOS 6.4 Not affected Not Applicable FortiProxy 7.6 7.6.0 through 7.6.1 Upgrade to 7.6.2 or above FortiProxy 7.4 Not affected Not Applicable FortiProxy 7.2 Not affected Not Applicable FortiProxy 7.0 Not affected Not Applicable FortiProxy 2.0 Not affected Not Applicable FortiSwitchManager 7.2 7.2.5 Upgrade to 7.2.6 or above FortiSwitchManager 7.0 Not affected Not Applicable 이 취약점은 ASCII 인증이 사용되는 구성에만 국한됩니다. PAP, MSCHAP 및 CHAP 구성은 영향을 받지 않습니다. 해결 방법 대체 인증 방법을 사용하세요. config user tacacs+     edit "TACACS-SERVER"         set server <IP address>         set key <string>         set authen-type [pap, mschap, chap]         set source-ip <IP address>     next end 또는 config use...

F5 링크 : https://my.f5.com/manage/s/article/K000151008     보안 권고 설명 2025년 5월 7일, F5는 다음과 같은 보안 문제를 발표했습니다. 이 문서는 F5 기기에 미치는 영향을 파악하는 데 도움이 되는 이러한 취약점에 대한 개요를 제공하기 위한 것입니다. 관련 기사에서 각 호에 대한 세부 사항을 확인할 수 있습니다.  HIGH CVEs Article (CVE) CVSS 점수 영향을 받은 제품 영향을 받은 버전 해결된 버전 K000139503: F5OS 취약점 CVE-2025-46265 8.8 (CVSS v3.1) 8.7 (CVSS v4.0) F5OS-A 1.5.1 1.8.0 1.5.2 F5OS-C 1.6.0 - 1.6.2 1.8.0 K000148591: Applicance mode BIG-IP iControl REST 및 tmsh 취약점 CVE-2025-31644 8.7 (CVSS v3.1) 8.5 (CVSS v4.0) BIG-IP (모든 모듈) 17.1.0 - 17.1.2 16.1.0 - 16.1.5 15.1.0 - 15.1.10 17.1.2.2 16.1.6 15.1.10.7 K000140574: F5OS Applicance mode 취약성 CVE-2025-36546 8.1 (CVSS v3.1) 9.2 (CVSS v4.0) F5OS-A 1.5.1 -1.5.2 1.8.0 1.5.3 F5OS-C 1.6.0 - 1.6.2 1.8.0 K000137709: SCTP vulnerability CVE-2025-41399   7.5 (CVSS v3.1) 8.7 (CVSS v4.0) BIG-IP (모든 모듈) 17.1.0 16.1.0 - 16.1.3 15.1.0 - 15.1.8 17.1.1 16.1.4 15.1.9 BIG-IP NEXT (모든 모듈) 20.2.0 20.2.1 BIG-IP NEXT SPK 1.8.0 - 1.9.2 1.7.0 - 1.7.11 2.0.0 1.7.12 BIG-IP NEXT CNF 1.1.0 - 1.2.1 1.3.0 K000139571: BIG-IP HTTP 취약점 CVE-2025-36557 7.5 (CVSS v3.1) 8.7 (CVSS v4.0) BIG-IP (모든 모듈) 17.1.0 - 17.1.1 16.1.0 - 16.1.4 17.1.2 16.1.5 BIG-IP NEXT SPK 1.8.0 - 1.9.2 1.7.0 - 1.7.8 2.0.0 1.7.9 BIG-IP NEXT CNF 1.1.0 - 1.3.3 2.0.0 1.4.0 K000140919: BIG-IP HTTP/2 취약점  CVE-2025-36504 7.5 (CVSS v3.1) 8.7 (CVSS v4.0) BIG-IP (모든 모듈) 17.1.0 - 17.1.1 16.1.0 - 16.1.5 17.1.2 16.1.6 BIG-IP NEXT (모든 모듈) 20.2.0 - 20.2.1 20.3.0 BIG-IP NEXT SPK 1.7.0 - 1.9.2 2.0.0 BIG-IP NEXT CNF 1.1.0 - 1.4.1 2.0.0 K000140937: BIG-IP SIP ALG Profile 취약점 CVE-2025-41433 7.5 (CVSS v3.1) 8.7 (CVSS v4.0) BIG-IP (모든 모듈) 17.1.0 - 17.1.1 16.1.0 - 16.1.4 15.1.0 - 15.1.10 17.1.2 16.1.5 K000140968: BIG-IP HTTP/2 취약점 CVE-2025-41414 7.5 (CVSS v3.1) 8.7 (CVSS v4.0) BIG-IP (모든 모듈) 17.1.0 - 17.1.1 16.1.0 - 16.1.4 15.1.0 - 15.1.10 17.1.2 16.1.5 BIG-IP...

첨부파일을 참고하세요.

Description The elastic core allocation "disable" value is not supported yet in version 33.0.x . When upgrading from 32.4.x to 33.0.x, if elastic core allocation is in “disable” mode, the device goes into a reset loop, requiring a recovery. Affected Platforms ODS-8420 ODS-6420 Affected Versions 32.4.23.0 and earlier Bug ID AL-145440 Workaround Before performing an upgrade, set elastic core allocation to "enable" , and apply and save it.

Description The design of the Virtual Servers page has been adjusted to display more rows in the virtual server table. This changes mistakenly moved the search functionality from the Virtual Server table to the Virtual Services table. Additionally, table misalignments may occur at certain screen resolutions. This screen can be accessed through the Cyber Controller or Alteon Web UI at Configuration > Application Delivery > Virtual Services: Affected Versions 34.5.0.0 34.0.5.0 33.5.9.0 33.0.13.0 Bug ID AL-145427, AL-145390  Solution Upgrade to versions mentioned in ETA for Fix. Workaround for APSolute Vision and Cyber Controller Users: Download the DD jar files from the following Fileshare (JumboMail) link: https://fileshare.radware.com/en/gallery/2F387776344574744D6E72464B3342347436653838673D3D?uid=645569704E7733567A2B37464B3342347436653838673D3D To update the DD jar files in Cyber Controller and APSolute Vision, use the procedure from KB article: How to update APSolute Vision Device Driver ETA for fix  34.5.1.0 34.0.6.0 33.5.10.0 33.0.14.0

Description You can import an applied configuration even though it contains certificates without a key. Affected Platforms All Affected Versions 34.5.3.0 and earlier 34.0.8.0 and earlier 33.5.12.0 and earlier 33.0.16.0 and earlier Bug ID AL-150025 Solution If a certificate without a key exists in a configuration, the first boot after reset results in a warning message being logged. Any subsequent configuration change fails until the problem is resolved. Any subsequent attempts to enter a certificate without a key will result in an error message being logged and restrictions on applying or saving operations. Upgrade to one of the fixed versions as listed in ETA for Fix. Workaround None ETA for fix  The fix is scheduled to be available in the following versions: 34.5.4.0 and later 34.0.9.0 and later 33.5.13.0 and later 33.0.17.0 and later