CVE-2026-39811

EUVD-2026-22340
A integer overflow or wraparound vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.3, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4 all versions, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow attacker to denial of service via <insert attack vector here>
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.9 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 33%
Affected Products (NVD)
VendorProductVersion
fortinetfortiweb
7.0.0 ≤
𝑥
≤ 7.0.13
fortinetfortiweb
7.2.0 ≤
𝑥
≤ 7.2.13
fortinetfortiweb
7.4.0 ≤
𝑥
≤ 7.4.12
fortinetfortiweb
7.6.0 ≤
𝑥
< 7.6.7
fortinetfortiweb
8.0.0 ≤
𝑥
< 8.0.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://fortiguard.fortinet.com/psirt/FG-IR-26-108