Fortinet FortiAnalyzer
0 remedies
cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 7.4.0, <= 7.4.2
- >= 7.4.0, <= 7.4.3
- >= 7.2.0, <= 7.2.5
- >= 7.0.0, <= 7.0.13
- >= 6.4.0, <= 6.4.15
Fortinet FortiAnalyzer, FortiManager, and FortiAnalyzer Cloud Privilege Escalation Vulnerability
Vulnerability
A vulnerability allowing privilege escalation has been identified in Fortinet FortiAnalyzer, FortiManager, and FortiAnalyzer Cloud. This issue arises from incorrect privilege assignments and affects multiple versions across these products. Specifically, it impacts FortiAnalyzer versions 7.4.0 through 7.4.3, 7.2.0 through 7.2.5, 7.0.0 through 7.0.13, and 6.4.0 through 6.4.15. FortiManager versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.13, and 6.4.0 through 6.4.15 are also affected. Additionally, FortiAnalyzer Cloud versions 7.4.1 through 7.4.2, 7.2.1 through 7.2.6, 7.0.1 through 7.0.13, and 6.4.1 through 6.4.7 are vulnerable. The vulnerability allows attackers to escalate privileges by using specific shell commands.
Impact
Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing attackers to gain elevated rights or access within the application or system.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
5.0impact
5.0exploitability
5.2remediation
0.0relevance
0.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.