CVE-2025-68482

Name of the Vulnerable Software and Affected Versions Fortinet FortiAnalyzer versions 6.4 through 7.6.4 Fortinet FortiManager versions 6.4 through 7.6.4

Description An incorrect certificate validation issue exists in Fortinet FortiAnalyzer and FortiManager. This flaw could allow a remote, unauthenticated attacker to view confidential information through a man-in-the-middle (MITM) attack. The issue stems from errors in the certificate authentication process.

Recommendations Fortinet FortiAnalyzer version 6.4 through 7.6.4: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Fortinet FortiManager version 6.4 through 7.6.4: At the moment, there is no information about a newer version that contains a fix for this vulnerability.