CNNVD-202512-1221 Information
CNNVD ID
CNNVD-202512-1221
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
Fortinet FortiPortal是美国飞塔(Fortinet)公司的FortiGate、FortiWiFi 和 FortiAP 产品线的高级、功能丰富的托管安全分析和管理支持工具,可作为虚拟机供 MSP 使用。 Fortinet FortiPortal 7.4.0版本至7.4.5版本存在安全漏洞,该漏洞源于授权不当,可能导致通过HTTP请求重启设备。
Description (English)
Fortinet FortiPortal is an advanced and functional hosting security analysis and management support tool for the FortiGate, FortiWiFi and FortiAP product lines of the United States Towers Corporation and can be used as a virtual machine for MSP. Fortinet Forti Portal versions 7.4.0 to 7.4.5 contain a security loophole, which stems from inappropriate authorization and may lead to requests for the restart of equipment through HTTP.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
飞塔
Published
2025-12-09
Last Modified
2026-02-24
References
https://fortiguard.fortinet.com/psirt/FG-IR-25-032 https://access.redhat.com/security/cve/cve-2025-54838
Patch
https://fortiguard.fortinet.com/psirt/FG-IR-25-032
Share on: