CVE-2025-53744 Information

Description

An incorrect privilege assignment vulnerability [CWE-266] in FortiOS Security Fabric version 7.6.0 through 7.6.2 7.4.0 through 7.4.7 7.2 all versions 7.0 all versions 6.4 all versions may allow a remote authenticated attacker with high privileges to escalate their privileges to super-admin via registering the device to a malicious FortiManager.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-25-173

Related CNNVD

CNNVD-202508-1264 (Published: 2025-08-12)