9 matches found
CVE-2025-47855
An exposure of sensitive information to an unauthorized actor CWE-200 vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests...
CVE-2025-47855
An exposure of sensitive information to an unauthorized actor CWE-200 vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests...
CVE-2025-47855
CVE-2025-47855 affects Fortinet FortiFone: versions 3.0.13–3.0.23 and 7.0.0–7.0.1 are vulnerable to an unauthenticated information disclosure via crafted HTTP/HTTPS requests (CWE-200). The vulnerability allows retrieval of device configuration. Remediation stated in sources: upgrade to FortiFone ...
EUVD-2026-2230
An exposure of sensitive information to an unauthorized actor CWE-200 vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests...
CVE-2025-47855
An exposure of sensitive information to an unauthorized actor CWE-200 vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests...
CVE-2025-47855
An exposure of sensitive information to an unauthorized actor CWE-200 vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 through 3.0.23 allows an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests...
Fortinet FortiFone 信息泄露漏洞
Fortinet FortiFone is a series of IP phones from Fortinet, Inc. An information disclosure vulnerability exists in Fortinet FortiFone versions 7.0.0 through 7.0.1 and 3.0.13 through 3.0.23, which stems from a specially crafted HTTP or HTTPS request that can lead to the disclosure of the device...
PT-2026-2467
Name of the Vulnerable Software and Affected Versions Fortinet FortiFone versions 7.0.0 through 7.0.1 Fortinet FortiFone versions 3.0.13 through 3.0.23 Description An exposure of sensitive information to an unauthorized actor allows an unauthenticated attacker to obtain the device configuration v...
VulnCheck KEV: CVE-2025-32756
Fortinet FortiFone, FortiVoice, FortiNDR and FortiMail contain a stack-based overflow vulnerability that may allow a remote unauthenticated attacker to execute arbitrary code or commands via crafted HTTP requests...