CVE-2025-54821: 
FortiOS Schwachstellenanalyse und -minderung

CVE-2025-54821 is an Improper Privilege Management vulnerability (CWE-269) discovered in multiple Fortinet products, including FortiOS (versions 7.6.0 through 7.6.3, 7.4, 7.2, 7.0, and 6.4), FortiPAM (version 1.6.0 and versions 1.0-1.5), and FortiProxy (versions 7.6.0 through 7.6.3, 7.4, 7.2, and 7.0). The vulnerability was initially disclosed on November 18, 2025, and was discovered by Nathan Jones from Orange Cyberdefense UK under responsible disclosure (Fortinet Advisory).

The vulnerability is classified as an Improper Privilege Management issue that affects the CLI component of the affected systems. It has been assigned a CVSS v3.1 Base Score of 1.9 (Low) by Fortinet and 6.0 (Medium) by NIST NVD, with the vector string CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N according to Fortinet's assessment (NVD).

The vulnerability allows an authenticated administrator to bypass the trusted host policy through crafted CLI commands, potentially leading to escalation of privilege. The impact is primarily focused on system security controls, specifically affecting the trusted host policy implementation (Fortinet Advisory).

Fortinet has released patches for the affected products and recommends users upgrade to fixed versions: FortiOS users should upgrade to version 7.6.4 or above, FortiPAM 1.6.0 users should upgrade to version 1.6.1 or above, and FortiProxy users should upgrade to version 7.6.4 or above. For other affected versions, users are advised to migrate to a fixed release. Fortinet provides an upgrade path tool at their documentation site for guidance (Fortinet Advisory).