CVE-2025-47855
Fortinet · FortiFone
An information disclosure vulnerability in FortiFone allows unauthenticated attackers to retrieve sensitive device configurations via crafted HTTP or HTTPS requests.
Executive summary
Fortinet FortiFone devices are susceptible to an unauthenticated information disclosure vulnerability that exposes sensitive configuration data.
Vulnerability
This vulnerability involves the exposure of sensitive configuration information to unauthorized actors, permitting an unauthenticated attacker to extract data by sending specially crafted web requests.
Business impact
With a CVSS score of 9.8, this vulnerability poses a severe risk to organizational confidentiality. Exposure of device configurations may reveal credentials, network topology, or other sensitive infrastructure details that enable further targeted attacks against the internal environment.
Remediation
Immediate Action: Apply the latest firmware update provided by Fortinet for all affected FortiFone units.
Proactive Monitoring: Review web access logs for suspicious HTTP/HTTPS requests that appear to be attempting to access configuration files or sensitive endpoints.
Compensating Controls: Restrict management access to the FortiFone interface to trusted management subnets only and employ firewall rules to block unauthorized external access.
Exploitation status
Public Exploit Available: Unknown
Analyst recommendation
Configuration disclosure represents a significant security oversight that facilitates further exploitation. Administrators must ensure that patches are applied promptly and that management interfaces are properly hardened against unauthorized access.