What is CVE-2025-53844?

CVE-2025-53844 is a high-severity vulnerability in Fortinet Fortios, classified under Out-of-bounds Write. CVSS score: 8.8/10. Published 2026-05-12.

How severe is CVE-2025-53844?

High severity. CVSS v3 base score is 8.8 out of 10.

Buffer overflow in Fortinet Fortios

CVE-2025-53844

A out-of-bounds write vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11 allows attacker to execute unauthorized code or commands via specially crafted packets.

Vulnerability class: Buffer Overflow

EPSS: 0.000 (6.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Fortinet Fortios — versions 7.6.0, 7.4.0, 7.2.0

Weakness classification (CWE)

CWE-787 — Out-of-bounds Write

References

psirt@fortinet.com (Vendor Advisory)

Frequently asked questions

What is CVE-2025-53844?: CVE-2025-53844 is a high-severity vulnerability in Fortinet Fortios, classified under Out-of-bounds Write. CVSS score: 8.8/10. Published 2026-05-12.
How severe is CVE-2025-53844?: High severity. CVSS v3 base score is 8.8 out of 10.