CVE-2025-54821
CVSS Score
1.8
EPSS Score
0.0%
EPSS Percentile
2th
An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4 all versions, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4 all versions, FortiProxy 7.2 all versions, FortiProxy 7.0 all versions may allow an authenticated administrator to bypass the trusted host policy via crafted CLI command.
| CWE | CWE-269 |
| Vendor | fortinet |
| Product | fortiproxy |
| Ecosystems | |
| Industries | NetworkingSecurity |
| Published | Nov 18, 2025 |
| Last Updated | Jun 9, 2026 |
Stay Ahead of the Next One
Get instant alerts for fortinet fortiproxy
Be the first to know when new low vulnerabilities affecting fortinet fortiproxy are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R Attack Vector
Local
Attack Complexity
High
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None
Affected Versions
Fortinet / FortiProxy
7.6.0 ≤ 7.6.3 7.4.0 ≤ 7.4.12 7.2.0 ≤ 7.2.15 7.0.0 ≤ 7.0.22
Fortinet / FortiPAM
1.6.0 1.5.0 ≤ 1.5.1 1.4.0 ≤ 1.4.3 1.3.0 ≤ 1.3.1 1.2.0 1.1.0 ≤ 1.1.2 1.0.0 ≤ 1.0.3
Fortinet / FortiOS
7.6.0 ≤ 7.6.3 7.4.0 ≤ 7.4.9 7.2.0 ≤ 7.2.12 7.0.0 ≤ 7.0.18 6.4.0 ≤ 6.4.16