CVE-2025-47855
published 2026-01-13CVE-2025-47855: An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through…
PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.79%
51.7th percentile
An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortifone | — | — |
| fortinet | fortifone | 3.0.13 – 3.0.23 | — |
| fortinet | fortifone | 7.0.0 – 7.0.1 | — |
| fortinet | fortinet | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect unauthenticated HTTP/HTTPS requests to FortiFone devices that retrieve device configuration — monitor for crafted requests to configuration endpoints from unauthenticated sources ↗
- →Focus detection on FortiFone versions 7.0.0–7.0.1 and 3.0.13–3.0.23; flag any successful configuration disclosure responses to unauthenticated sessions on these devices ↗
- ·Vulnerability is an information disclosure (CWE-200) — the attacker obtains the device configuration without authentication, which may expose credentials or network settings usable for further compromise. CVSS score is 9.8 (Critical). ↗
- ·No specific malicious path, payload, or request pattern has been publicly disclosed in available sources — detection must rely on behavioral anomalies (unauthenticated access returning configuration data) until a PoC or additional technical detail is published. ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-652v-c6p4-8hh6: An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7
ghsa_unreviewed·2026-01-13
CVE-2025-47855 [CRITICAL] CWE-200 GHSA-652v-c6p4-8hh6: An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7
An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests.
Fortinet
Unauthenticated access to local configuration
vendor_fortinet·2026-01-13·CVSS 9.8
CVE-2025-47855 [CRITICAL] CWE-200 Unauthenticated access to local configuration
FG-IR-25-260: Unauthenticated access to local configuration
An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests.
CVEs: CVE-2025-47855
CWEs: CWE-200
CVSS: 9.8 (critical)
Affected products: FortiFone, Fortinet
No detection rules found.
No public exploits indexed.
2026-01-13
Published