CVE-2025-53379
CVSS Score
7.0
EPSS Score
0.0%
EPSS Percentile
0th
A out-of-bounds read vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6.6.2, FortiAuthenticator 6.5 all versions may allow a remote unauthenticated attacker to retrieve sensitive information via a specially crafted request.
| CWE | CWE-125 |
| Vendor | fortinet |
| Product | fortiauthenticator |
| Ecosystems | |
| Industries | NetworkingSecurity |
| Published | Jul 14, 2026 |
| Last Updated | Jul 14, 2026 |
Stay Ahead of the Next One
Get instant alerts for fortinet fortiauthenticator
Be the first to know when new high vulnerabilities affecting fortinet fortiauthenticator are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:F/RL:O/RC:C Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Affected Versions
Fortinet / FortiAuthenticator
6.6.0 โค 6.6.2 6.5.0 โค 6.5.7 6.4.0 โค 6.4.11 6.3.0 โค 6.3.5