CVE-2025-24472: FortiOS Authentication Bypass (Super Admin)

Score: 9.6
CRITICAL
Published: 2025-02-11Affected: FortiOS 7.0.0-7.0.16CWE-288 β†—

Can FortiOS be compromised without credentials?

An authentication bypass using an alternate path in FortiOS. Remote attackers can gain super_admin privileges via crafted CSF proxy requests, enabling complete device takeover without credentials.

Impact & Exploitation

Exploited by ransomware operators to gain initial access to corporate networks. Super admin access enables firewall rule modification, traffic interception, and VPN credential theft.

Related Resources

πŸ›‘οΈ Notable Vulnerabilities

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS9.6
SeverityCRITICAL
CWECWE-288
Published2025-02-11

Tags

fortinetauth-bypassransomwarefirmware

Quick Links

Is your system affected?

Precogs AI detects FortiOS Authentication Bypass (Super Admin) in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2025-24472 FortiOS Authentication Bypass (Super Admin) don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo