Vulnerability Description
An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.1, FortiOS 7.4.0 through 7.4.6, FortiOS 7.2.0 through 7.2.10, FortiOS 7.0.0 through 7.0.16, FortiOS 6.4.0 through 6.4.15, FortiProxy 7.6.0 through 7.6.1, FortiProxy 7.4.0 through 7.4.7, FortiWeb 7.6.0 through 7.6.1, FortiWeb 7.4.0 through 7.4.6 allows an authenticated attacker with at least read-only admin permissions to gain super-admin privileges via crafted requests to Node.js websocket module.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fortinet | Fortios | >= 6.4.0, < 6.4.16 |
| Fortinet | Fortiproxy | >= 7.4.0, < 7.4.8 |
| Fortinet | Fortiweb | >= 7.4.0, < 7.4.7 |
Related Weaknesses (CWE)
References
- https://fortiguard.fortinet.com/psirt/FG-IR-25-006Vendor Advisory
FAQ
What is CVE-2025-22254?
CVE-2025-22254 is a vulnerability with a CVSS score of 6.6 (MEDIUM). An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.1, FortiOS 7.4.0 through 7.4.6, FortiOS 7.2.0 through 7.2.10, FortiOS 7.0.0 through 7.0.16,...
How severe is CVE-2025-22254?
CVE-2025-22254 has been rated MEDIUM with a CVSS base score of 6.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-22254?
Check the references section above for vendor advisories and patch information. Affected products include: Fortinet Fortios, Fortinet Fortiproxy, Fortinet Fortiweb.