216.73.217.86

CVE-2025-48418

· Published 10/03/2026 18:17 · Modified 11/03/2026 13:53

Labels: CVE-2025-48418 2026-03-10CVE-2025-48418CWE-912[email protected]

Essential information

Published
10/03/2026 18:17
Modified
11/03/2026 13:53
Author
Creator
CVSS
6.7 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

A hidden functionality vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.3, FortiAnalyzer 7.4.0 through 7.4.7, FortiAnalyzer 7.2.0 through 7.2.10, FortiAnalyzer 7.0.0 through 7.0.14, FortiAnalyzer 6.4 all versions, FortiAnalyzer Cloud 7.6.2, FortiAnalyzer Cloud 7.4.1 through 7.4.7, FortiAnalyzer Cloud 7.2.1 through 7.2.10, FortiAnalyzer Cloud 7.0.1 through 7.0.14, FortiAnalyzer Cloud 6.4 all versions, FortiManager 7.6.0 through 7.6.3, FortiManager 7.4.0 through 7.4.7, FortiManager 7.2.0 through 7.2.10, FortiManager 7.0.0 through 7.0.14, FortiManager 6.4 all versions, FortiManager Cloud 7.6.2 through 7.6.3, FortiManager Cloud 7.4.1 through 7.4.7, FortiManager Cloud 7.2.1 through 7.2.10, FortiManager Cloud 7.0.1 through 7.0.14, FortiManager Cloud 6.4 all versions may allow a remote authenticated read-only admin with CLI access to escalate their privilege via use of a hidden command.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
fortinet / fortianalyzer cpe:2.3:a:fortinet:fortianalyzer:7.6.0-7.6.3:*:*:*:*:*:*:*
fortinet / fortianalyzer cpe:2.3:a:fortinet:fortianalyzer:7.4.0-7.4.7:*:*:*:*:*:*:*
fortinet / fortianalyzer cpe:2.3:a:fortinet:fortianalyzer:7.2.0-7.2.10:*:*:*:*:*:*:*
fortinet / fortianalyzer cpe:2.3:a:fortinet:fortianalyzer:7.0.0-7.0.14:*:*:*:*:*:*:*
fortinet / fortianalyzer cpe:2.3:a:fortinet:fortianalyzer:6.4:*:*:*:*:*:*:*
fortinet / fortianalyzer cloud cpe:2.3:a:fortinet:fortianalyzer_cloud:7.6.2:*:*:*:*:*:*:*
fortinet / fortianalyzer cloud cpe:2.3:a:fortinet:fortianalyzer_cloud:7.4.1-7.4.7:*:*:*:*:*:*:*
fortinet / fortianalyzer cloud cpe:2.3:a:fortinet:fortianalyzer_cloud:7.2.1-7.2.10:*:*:*:*:*:*:*
fortinet / fortianalyzer cloud cpe:2.3:a:fortinet:fortianalyzer_cloud:7.0.1-7.0.14:*:*:*:*:*:*:*
fortinet / fortianalyzer cloud cpe:2.3:a:fortinet:fortianalyzer_cloud:6.4:*:*:*:*:*:*:*
fortinet / fortimanager cpe:2.3:a:fortinet:fortimanager:7.6.0-7.6.3:*:*:*:*:*:*:*
fortinet / fortimanager cpe:2.3:a:fortinet:fortimanager:7.4.0-7.4.7:*:*:*:*:*:*:*
fortinet / fortimanager cpe:2.3:a:fortinet:fortimanager:7.2.0-7.2.10:*:*:*:*:*:*:*
fortinet / fortimanager cpe:2.3:a:fortinet:fortimanager:7.0.0-7.0.14:*:*:*:*:*:*:*
fortinet / fortimanager cpe:2.3:a:fortinet:fortimanager:6.4:*:*:*:*:*:*:*
fortinet / fortimanager cloud cpe:2.3:a:fortinet:fortimanager_cloud:7.6.2-7.6.3:*:*:*:*:*:*:*
fortinet / fortimanager cloud cpe:2.3:a:fortinet:fortimanager_cloud:7.4.1-7.4.7:*:*:*:*:*:*:*
fortinet / fortimanager cloud cpe:2.3:a:fortinet:fortimanager_cloud:7.2.1-7.2.10:*:*:*:*:*:*:*
fortinet / fortimanager cloud cpe:2.3:a:fortinet:fortimanager_cloud:7.0.1-7.0.14:*:*:*:*:*:*:*
fortinet / fortimanager cloud cpe:2.3:a:fortinet:fortimanager_cloud:6.4:*:*:*:*:*:*:*

References