THREAT OPS › CVEs › CVE-2025-24472
CVE-2025-24472 — Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability
Fortinet FortiOS and FortiProxy contain an authentication bypass vulnerability that allows a remote attacker to gain super-admin privileges via crafted CSF proxy requests.
Vulnerability details
- Affected productsFortiOS and FortiProxy
- KEV remediation due2025-04-08