CVE-2025-22256 | Fortinet FortiPAM/FortiSRA up to 1.4.1 HTTP Request insufficient permissions or privileges (FG-IR-25-008)

Inserito da Angelo Barbosa | Giu 10, 2025 | CVE

A vulnerability was found in Fortinet FortiPAM and FortiSRA up to 1.4.1. It has been classified as critical. This affects an unknown part of the component HTTP Request Handler. The manipulation leads to improper handling of insufficient permissions or privileges.

This vulnerability is uniquely identified as CVE-2025-22256. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-22256 | Fortinet FortiPAM/FortiSRA up to 1.4.1 HTTP Request insufficient permissions or privileges (FG-IR-25-008)

Post correlati

CVE-2024-5652 | Docker Desktop up to 4.30.x on Windows Daemon denial of service

CVE-2024-21655 | Discourse up to 3.1.3/3.2.0.beta3 resource consumption

CVE-2024-48406 | SunBK201 umicat up to 0.3.2 src/uct_upstream.c power buffer overflow

CVE-2024-8533 | Rockwell Automation 2800C OptixPanel Compact 4.0.0.325 privileges management