CVE-2025-22254

CVE Database · CVE-2025-22254

CVE-2025-22254

· MEDIUMModified

CVSS v3.1

6.6

EPSS

0.71%

Published

Jun 10, 2025

Modified

Jan 14, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.1, FortiOS 7.4.0 through 7.4.6, FortiOS 7.2.0 through 7.2.10, FortiOS 7.0.0 through 7.0.16, FortiOS 6.4.0 through 6.4.15, FortiProxy 7.6.0 through 7.6.1, FortiProxy 7.4.0 through 7.4.7, FortiWeb 7.6.0 through 7.6.1, FortiWeb 7.4.0 through 7.4.6 allows an authenticated attacker with at least read-only admin permissions to gain super-admin privileges via crafted requests to Node.js websocket module.

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-269

Affected Products (9)

fortinet · fortios (up to 6.4.16)vulnerable

fortinet · fortios (up to 7.0.17)vulnerable

fortinet · fortios (up to 7.2.11)vulnerable

fortinet · fortios (up to 7.4.7)vulnerable

fortinet · fortios (up to 7.6.2)vulnerable

fortinet · fortiproxy (up to 7.4.8)vulnerable

fortinet · fortiproxy (up to 7.6.2)vulnerable

fortinet · fortiweb (up to 7.4.7)vulnerable

· fortiweb

References (1)

https://fortiguard.fortinet.com/psirt/FG-IR-25-006

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs