CVE-2025-54821

Details

An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4 all versions, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4 all versions, FortiProxy 7.2 all versions, FortiProxy 7.0 all versions may allow an authenticated administrator to bypass the trusted host policy via crafted CLI command.

Affected Packages

FortiOS

References

ADVISORYhttps://fortiguard.fortinet.com/psirt/FG-IR-25-545 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2025-54821

CVE-2025-54821

Details

Affected Packages

References

Aliases

CVSS Analysis

Weakness Type (CWE)

Ecosystems

Timeline