CNNVD-202510-1967 Information
CNNVD ID
CNNVD-202510-1967
Related CVE
- CNNVD Published: 2025-10-14
Description (Chinese)
Fortinet FortiSwitchManager和Fortinet FortiPAM都是美国飞塔(Fortinet)公司的产品。Fortinet FortiSwitchManager是一款网络交换机管理工具,旨在帮助组织管理其 FortiSwitch 系列网络交换机。Fortinet FortiPAM是一款权限访问控制的平台。 Fortinet FortiSwitchManager和Fortinet FortiPAM存在安全漏洞,该漏洞源于弱身份验证,可能导致执行未授权代码或命令。以下产品及版本受到影响:Fortinet FortiPAM 1.5.0版本、1.4.0版本至1.4.2版本、1.3.0版本至1.3.1版本、1.2.0版本、1.1.0版本至1.1.2版本、1.0.0版本至1.0.3版本和FortiSwitchManager 7.2.0版本至7.2.4版本。
Description (English)
Fortinet FortiSwitchManager and Fortinet FortiPam are products of Fortinet. Fortinet FortiSwitchManager is a network switch management tool designed to help organizations manage their FortiSwitch series network switches. Fortinet FortiPam is a platform for access control. Fortinet FortiSwitchManager and Fortinet FortiPAM had a security loophole that stemmed from weak identification and could lead to the execution of unauthorized codes or orders. The following products and versions have been affected: Fortinet FortiPAM Version 1.5.0, Versions 1.4.0 to 1.4.2, Versions 1.3.0 to 1.3.1, Versions 1.2.0, Versions 1.1.0 to 1.1.2, Versions 1.0.0 to 1.0.3 and FortiSwitchManager Version 7.2.0 to 7.2.4.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
飞塔
Published
2025-10-14
Last Modified
2026-02-24
References
https://fortiguard.fortinet.com/psirt/FG-IR-25-010 https://access.redhat.com/security/cve/cve-2025-49201
Patch
https://fortiguard.fortinet.com/psirt/FG-IR-25-010
Share on: