{"uuid": "01991185-22f6-4dba-976b-23891390bee9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-32756", "type": "published-proof-of-concept", "source": "https://t.me/ViralCyber/14040", "content": "\ud83d\udd34\u0627\u0646\u062a\u0634\u0627\u0631 PoC \u0628\u0631\u0627\u06cc \u06cc\u06a9 Zero-Day \u0628\u062d\u0631\u0627\u0646\u06cc \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Fortinet \n\u2699\ufe0f CVE-2025-32756 | \u2b55 CVSS Score: 9.8\n\u274c \u0627\u0645\u06a9\u0627\u0646 Remote Code Execution \u0628\u062f\u0648\u0646 \u0646\u06cc\u0627\u0632 \u0628\u0647 Authentication\n\n\u203c\ufe0f\u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc stack-based buffer overflow \u062f\u0631 \u0628\u0631\u062e\u06cc \u0645\u062d\u0635\u0648\u0644\u0627\u062a Fortinet \u06a9\u0634\u0641 \u0634\u062f\u0647 \u06a9\u0647 \u0627\u0645\u06a9\u0627\u0646 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 (RCE) \u0631\u0627 \u0628\u062f\u0648\u0646 \u0646\u06cc\u0627\u0632 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0641\u0631\u0627\u0647\u0645 \u0645\u06cc\u200c\u06a9\u0646\u062f. \u0627\u06cc\u0646 flaw \u0646\u0627\u0634\u06cc \u0627\u0632 \u0639\u062f\u0645 \u0628\u0631\u0631\u0633\u06cc \u062f\u0642\u06cc\u0642 bounds \u0647\u0646\u06af\u0627\u0645 \u067e\u0631\u062f\u0627\u0632\u0634 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 enc \u062f\u0631 \u0648\u0631\u0648\u062f\u06cc\u200c\u0647\u0627\u0633\u062a.\n\n\u26a0\ufe0f \u0646\u06a9\u062a\u0647 \u0645\u0647\u0645 \u0627\u06cc\u0646 \u0627\u0633\u062a \u06a9\u0647 PoC Exploit \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0628\u0647\u200c\u0635\u0648\u0631\u062a \u0639\u0645\u0648\u0645\u06cc \u0645\u0646\u062a\u0634\u0631 \u0634\u062f\u0647 \u0648 \u0631\u06cc\u0633\u06a9 Exploitation \u0631\u0627 \u0628\u0633\u06cc\u0627\u0631 \u0628\u0627\u0644\u0627 \u0628\u0631\u062f\u0647 \u0627\u0633\u062a.\n\n\u26a1\ufe0f \u0627\u0642\u062f\u0627\u0645\u0627\u062a \u0641\u0648\u0631\u06cc:\n\ud83d\udccc\u0628\u0631\u0631\u0633\u06cc \u0648\u0636\u0639\u06cc\u062a \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u062a\u062c\u0647\u06cc\u0632\u0627\u062a Fortinet \u0633\u0627\u0632\u0645\u0627\u0646\n\ud83d\udccc\u0627\u0639\u0645\u0627\u0644 Patch \u0648 Firmware Update \u0645\u0646\u062a\u0634\u0631\u0634\u062f\u0647 \u062a\u0648\u0633\u0637 Fortinet\n\ud83d\udccc\u0645\u062d\u062f\u0648\u062f\u0633\u0627\u0632\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 Interfaces \u0645\u062f\u06cc\u0631\u06cc\u062a\u06cc (\u0645\u062b\u0644 HTTPS\u060c SSH)\n\ud83d\udccc\u067e\u0627\u06cc\u0634 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0634\u0628\u06a9\u0647 \u0628\u0631\u0627\u06cc \u0631\u0641\u062a\u0627\u0631\u0647\u0627\u06cc \u0645\u0634\u06a9\u0648\u06a9 \u06cc\u0627 \u062a\u0644\u0627\u0634 \u0628\u0631\u0627\u06cc Exploitation\n\n\u2b55\ufe0f\u062a\u0648\u062c\u0647 \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u06cc\u062f \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u062f\u0631 \u062d\u0645\u0644\u0627\u062a \u0647\u062f\u0641\u0645\u0646\u062f (APT) \u06cc\u0627 lateral movement \u0645\u0648\u0631\u062f \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0642\u0631\u0627\u0631 \u06af\u06cc\u0631\u062f.\n\n\u2709\ufe0f@PingChannel\n\u062e\u0628\u0631\u060c \u062a\u062d\u0644\u06cc\u0644\u060c \u0627\u0646\u062a\u0642\u0627\u062f - \u0641\u0646\u0627\u0648\u0631\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a\n\ud83d\udd2b\ud83d\udd2b\ud83d\udd2b\ud83d\udd2b", "creation_timestamp": "2025-06-09T08:26:14.000000Z"}