CVE-2025-55717

EUVD-2025-208495

10.03.2026, 18:17

A cleartext storage of sensitive information vulnerability [CWE-312] vulnerability in Fortinet FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0 through 7.4.4, FortiMail 7.2.0 through 7.2.7, FortiMail 7.0.0 through 7.0.8, FortiRecorder 7.2.0 through 7.2.3, FortiRecorder 7.0 all versions, FortiRecorder 6.4 all versions, FortiVoice 7.2.0, FortiVoice 7.0.0 through 7.0.6 may allow an authenticated malicious administrator to obtain user's secrets via CLI commands. Practical exploitability is limited by conditions out of the control of the attacker: An admin must log in to the targeted device.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	4 MEDIUM	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N
fortinet	CNA	3.8 LOW	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N/E:P/RL:X/RC:C

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Affected Products (NVD)

Vendor	Product	Version
fortinet	fortivoice	7.0.0 ≤ 𝑥 < 7.0.7
fortinet	fortivoice	7.2.0
fortinet	fortirecorder	6.4.0 ≤ 𝑥 < 7.2.4
fortinet	fortimail	7.0.0 ≤ 𝑥 < 7.0.9
fortinet	fortimail	7.2.0 ≤ 𝑥 < 7.2.8
fortinet	fortimail	7.4.0 ≤ 𝑥 < 7.4.5
fortinet	fortimail	7.6.0 ≤ 𝑥 < 7.6.3

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-312 - Cleartext Storage of Sensitive Information
The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

Vulnerability Media Exposure

[GERMAN] Fortinet: Hochriskante Lücken in FortiWeb, FortiManager und weiteren
Fortinet schließt Lücken in FortiWeb oder FortiManager, die etwa Einschleusen von Befehlen erlauben. FortiGate-Firewalls wurden attackiert.
Published: 2026-03-11T11:47:00+00:00

References

https://fortiguard.fortinet.com/psirt/FG-IR-26-080