Security Advisory

CVE-2025-47855

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-13 16:32:29

Last updated 2026-01-14 09:16:17

Assigner fortinet

State PUBLISHED

Description

An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests.

← Browse all CVEs View on cve.org ↗