How to fix CVE-2025-24472?

Within 24 hours: Identify all affected systems running FortiOS 7.0.0 and apply vendor patches immediately. Monitor vendor channels for patch availability.

Is Fortiproxy affected by CVE-2025-24472?

Organizations using FortiOS 7.0.0 face notable risk from CVE-2025-24472 rated CVSS 8.1. Successful exploitation could significantly impact the confidentiality, integrity, or availability of affected systems.

CVE-2025-24472

HIGH

2025-02-11 [email protected]

8.1

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 28, 2026 - 18:26 vuln.today

Added to CISA KEV

Oct 24, 2025 - 12:53 cisa

CISA KEV

CVE Published

Feb 11, 2025 - 17:15 nvd

HIGH 8.1

Description

An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS 7.0.0 through 7.0.16 and FortiProxy 7.2.0 through 7.2.12, 7.0.0 through 7.0.19 may allow a remote unauthenticated attacker with prior knowledge of upstream and downstream devices serial numbers to gain super-admin privileges on the downstream device, if the Security Fabric is enabled, via crafted CSF proxy requests.

Analysis

FortiOS and FortiProxy contain an authentication bypass allowing unauthenticated attackers with knowledge of upstream/downstream device serial numbers to gain super-admin privileges on downstream devices.

Technical Context

The CWE-288 authentication bypass through an alternate channel exploits the trust relationship between FortiGate devices. Knowing the serial numbers (which may be exposed through SNMP, web interface, or network scanning) allows an attacker to craft requests that the downstream device trusts as coming from the upstream management device.

Affected Products

['FortiOS 7.0.0 through 7.0.16', 'FortiProxy 7.2.0 through 7.2.12', 'FortiProxy 7.0.0 through 7.0.19']

Remediation

Upgrade FortiOS/FortiProxy. Restrict SNMP access. Disable serial number display on login pages. Audit firewall configurations for unauthorized modifications.

Priority Score

101

Low Medium High Critical

KEV: +50

EPSS: +10.1

CVSS: +40

POC: 0

CVE-2025-24472 vulnerability details – vuln.today

Back

CVE-2025-24472

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

CVE-2025-24472

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code