High8.3Fortinet Updated
Out-of-bounds access in CAPWAP daemon
FG-IR-26-123 Published May 12, 2026Updated by vendor May 12, 2026
CVE-2025-53844
Affected products & platforms
FortinetFortiGateFirewallFortiOSFortiSwitchFortiAP
Summary
CVSSv3 Score: 8.3 An Out-Of-Bounds Write vulnerability [CWE-787] in FortiOS capwap daemon may allow an attacker controlling an authenticated FortiAP FortiExtender or FortiSwitch to gain execution privileges on the FortiGate device Revised on 2026-05-12 00:00:00
Affected versions
- FortiOS 7.6: 7.6.0 through 7.6.3
- FortiOS 7.4: 7.4.0 through 7.4.8
- FortiOS 7.2: 7.2.0 through 7.2.11
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Fixed versions
- FortiOS 7.6: 7.6.4
- FortiOS 7.4: 7.4.9
- FortiOS 7.2: 7.2.12
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Mitigation checklist
Recommended fix / mitigation
- Upgrade per the Affected/Solution table: FortiOS 7.6: 7.6.4; FortiOS 7.4: 7.4.9; FortiOS 7.2: 7.2.12.
Temporary workarounds
- **Post-Change Configuration Validation**
- show full | grep wireless-controllerset wireless-controller disableset wireless-controller-port 5246
- show full | grep fortiextenderset fortiextender disableset fortiextender-data-port 25246set fortiextender-discovery-lockdown disableset fortiextender-provision-on-authorization disableset fortiextender-vlan-mode disable```
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.