THREATOPS
THREAT OPSCVEs › CVE-2025-24472

CVE-2025-24472 — Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability

CISA KEVExploited: confirmedFortinet

Fortinet FortiOS and FortiProxy contain an authentication bypass vulnerability that allows a remote attacker to gain super-admin privileges via crafted CSF proxy requests.

Vulnerability details