How severe is CVE-2025-54838?

CVE-2025-54838 has a CVSS v3 score of 6.8 (MEDIUM).

CVE-2025-54838

Name: fortiportal
Author: fortinet

6.8MEDIUM

An Incorrect Authorization vulnerability [CWE-863] in FortiPortal 7.4.0 through 7.4.5 may allow an authenticated attacker to reboot a shared FortiGate device via crafted HTTP requests.

Опубликовано: 12/9/2025Обновлено: 12/9/2025

Описание

An Incorrect Authorization vulnerability [CWE-863] in FortiPortal 7.4.0 through 7.4.5 may allow an authenticated attacker to reboot a shared FortiGate device via crafted HTTP requests.

ИИ-АнализНа базе ИИ

Затронутые продукты

fortinetfortiportal

Ссылки

https://fortiguard.fortinet.com/psirt/FG-IR-25-032
Vendor Advisory