How severe is CVE-2025-47855?

CVE-2025-47855 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2025-47855

9.8CRITICAL

An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to o

Publicado: 1/13/2026Actualizado: 1/14/2026

Descripción

An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests.

Análisis IAImpulsado por IA

Referencias

https://fortiguard.fortinet.com/psirt/FG-IR-25-260