CVE-2025-57823 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A direct request ('forced browsing') vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6.6.6, FortiAuthenticator 6.5 all versions, FortiAuthenticator 6…
Low CVSS: 2.7

CVE-2025-57823

A direct request ('forced browsing') vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6.6.6, FortiAuthenticator 6.5 all versions, FortiAuthenticator 6.4 all versions, FortiAuthenticator 6.3 all versions may allow an authenticated attacker with at least sponsor permissions to read and download device logs via accessing specific endpoints
Vendor
Fortinet
Product
Fortiauthenticator
CWE
CWE-425
Yayın Tarihi
2025-12-09 18:15:54
Güncelleme
2025-12-09 19:45:32
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-425 Fortiauthenticator LOW Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-25-554