cbcvebase.
CVE-2025-47855
published 2026-01-13

CVE-2025-47855: An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through…

PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.79%
51.7th percentile
An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests.

Affected

4 ranges
VendorProductVersion rangeFixed in
fortinetfortifone
fortinetfortifone3.0.13 – 3.0.23
fortinetfortifone7.0.0 – 7.0.1
fortinetfortinet

Detection & IOCsextracted from sources · hover to see the quote

  • Detect unauthenticated HTTP/HTTPS requests to FortiFone devices that retrieve device configuration — monitor for crafted requests to configuration endpoints from unauthenticated sources
  • Focus detection on FortiFone versions 7.0.0–7.0.1 and 3.0.13–3.0.23; flag any successful configuration disclosure responses to unauthenticated sessions on these devices
  • ·Vulnerability is an information disclosure (CWE-200) — the attacker obtains the device configuration without authentication, which may expose credentials or network settings usable for further compromise. CVSS score is 9.8 (Critical).
  • ·No specific malicious path, payload, or request pattern has been publicly disclosed in available sources — detection must rely on behavioral anomalies (unauthenticated access returning configuration data) until a PoC or additional technical detail is published.
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.