How severe is CVE-2025-47855?

CVE-2025-47855 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2025-47855

9.8CRITICAL

An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to o

Published: 1/13/2026Updated: 1/14/2026

Description

An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests.

AI AnalysisPowered by AI

References

https://fortiguard.fortinet.com/psirt/FG-IR-25-260