Critical Vulnerability Information Vulnerability Overview Type: Integer Overflow or Wraparound Vulnerability (CWE-190) Impact: FortiOS Security Fabric may allow a remote unauthenticated attacker to cause the csfd daemon to crash by sending specially crafted requests. Component: GUI Severity: Medium CVSSv3 Score: 4.8 Impact: Denial of Service CVE ID: CVE-2025-47294 Affected Versions and Remediation Timeline 2025-05-13: Initial release Additional Information IR Number: FG-IR-24-388 Release Date: May 13, 2025 Recommended Upgrade Path Tool: https://docs.fortinet.com/upgrade-tool