PT-2025-47359 · Fortinet · Fortiadc
Published
2025-11-18
·
Updated
2025-11-19
·
CVE-2025-54971
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Fortinet FortiADC versions 6.2 through 7.4.0
Description
A flaw exists in Fortinet FortiADC that could allow an administrator with read-only permissions to access passwords for external resources through the product's logs. This could lead to sensitive information disclosure to an unauthorized actor.
Recommendations
Fortinet FortiADC versions prior to 7.4.0 should be updated.
Fix
Information Disclosure
Insertion into Log File
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Fortiadc