4 matches found
Siemens APE1808 Missing Authentication for Critical Function (CVE-2025-22252)
A missing authentication for critical function vulnerability in FortiOS, FortiProxy, and FortiSwitchManager TACACS+ configured to use a remote TACACS+ server for authentication, that has itself been configured to use ASCII authentication may allow an attacker with knowledge of an existing admin...
CVE-2025-22252
A missing authentication for critical function in Fortinet FortiProxy versions 7.6.0 through 7.6.1, FortiSwitchManager version 7.2.5, and FortiOS versions 7.4.4 through 7.4.6 and version 7.6.0 may allow an attacker with knowledge of an existing admin account to access the device as a valid admin...
CVE-2025-22252
CVE-2025-22252 describes a missing authentication for critical functions in Fortinet products: FortiProxy (7.6.0–7.6.1), FortiSwitchManager (7.2.5), and FortiOS (7.4.4–7.4.6 and 7.6.0). The root cause is an authentication bypass that could let an attacker who knows an existing admin account acces...
CVE-2025-22252
creationtimestamp| type| source ---|---|--- 2025-05-13 21:09:34+00:00| seen| https://www.fortiguard.com/psirt/FG-IR-24-472 2025-05-14 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1549 2025-05-14 06:13:02+00:00| seen|...