CVE-2025-54821
published 2025-11-18CVE-2025-54821: An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4 all versions, FortiOS 7.2 all…
medium6CVSS 3.1
AVLACLPRHUINSUCHIHAN
An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4 all versions, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4 all versions, FortiProxy 7.2 all versions, FortiProxy 7.0 all versions may allow an authenticated administrator to bypass the trusted host policy via crafted CLI command.
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortinet | — | — |
| fortinet | fortios | — | — |
| fortinet | fortios | >= 6.4.0 < 7.6.4 | 7.6.4 |
| fortinet | fortios | 6.4.0 – 6.4.16 | — |
| fortinet | fortios | 7.0.0 – 7.0.18 | — |
| fortinet | fortios | 7.2.0 – 7.2.12 | — |
| fortinet | fortios | 7.4.0 – 7.4.9 | — |
| fortinet | fortios | 7.6.0 – 7.6.3 | — |
| fortinet | fortipam | — | — |
| fortinet | fortipam | — | — |
| fortinet | fortipam | — | — |
| fortinet | fortipam | >= 1.0.0 < 1.6.1 | 1.6.1 |
| fortinet | fortipam | 1.0.0 – 1.0.3 | — |
| fortinet | fortipam | 1.1.0 – 1.1.2 | — |
| fortinet | fortipam | 1.3.0 – 1.3.1 | — |
| fortinet | fortipam | 1.4.0 – 1.4.3 | — |
| fortinet | fortipam | 1.5.0 – 1.5.1 | — |
| fortinet | fortiproxy | — | — |
| fortinet | fortiproxy | >= 7.0.0 < 7.6.4 | 7.6.4 |
| fortinet | fortiproxy | 7.0.0 – 7.0.22 | — |
| fortinet | fortiproxy | 7.2.0 – 7.2.15 | — |
| fortinet | fortiproxy | 7.4.0 – 7.4.12 | — |
| fortinet | fortiproxy | 7.6.0 – 7.6.3 | — |