CVE-2025-67862
Awaiting Analysis
Awaiting Analysis - Queue
Unsafe Debug Access in FortiOS and FortiProxy
Publication date: 2026-06-09
Last updated on: 2026-06-09
Assigner: Fortinet, Inc.
Description
Description
An Internal Asset Exposed to Unsafe Debug Access Level or State vulnerability [CWE-1244] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.2, FortiOS 7.4.0 through 7.4.7, FortiOS 7.2.0 through 7.2.10, FortiOS 7.0.0 through 7.0.16, FortiOS 6.4 all versions, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4.0 through 7.4.10, FortiProxy 7.2.0 through 7.2.14, FortiProxy 7.0 all versions may allow an authenticated admin to execute lua scripts via crafted CLI commands.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| fortinet | fortios | From 7.6.0 (inc) to 7.6.2 (inc) |
| fortinet | fortios | From 7.4.0 (inc) to 7.4.7 (inc) |
| fortinet | fortios | From 7.2.0 (inc) to 7.2.10 (inc) |
| fortinet | fortios | From 7.0.0 (inc) to 7.0.16 (inc) |
| fortinet | fortios | 6.4 |
| fortinet | fortiproxy | From 7.6.0 (inc) to 7.6.3 (inc) |
| fortinet | fortiproxy | From 7.4.0 (inc) to 7.4.10 (inc) |
| fortinet | fortiproxy | From 7.2.0 (inc) to 7.2.14 (inc) |
| fortinet | fortiproxy | 7.0 |
| fortinet | fortios | 7.6 |
| fortinet | fortios | 7.4 |
| fortinet | fortios | 7.2 |
| fortinet | fortios | 7.0 |
| fortinet | fortiproxy | 7.6 |
| fortinet | fortiproxy | 7.4 |
| fortinet | fortiproxy | 7.2 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-1244 | The product uses physical debug or test interfaces with support for multiple access levels, but it assigns the wrong debug access level to an internal asset, providing unintended access to the asset from untrusted debug agents. |