CVE-2025-68482

medium

Fortinet

CVSS v3 Base Score

6.9

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:N

Published: March 10, 2026

Last Modified: March 12, 2026

Vendor: Fortinet

Source: NVD

Description

A improper certificate validation vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4.0 through 7.4.8, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiManager 7.6.0 through 7.6.4, FortiManager 7.4.0 through 7.4.8, FortiManager 7.2 all versions, FortiManager 7.0 all versions, FortiManager 6.4 all versions may allow a remote unauthenticated attacker to view confidential information via a man in the middle [MiTM] attack.

CWE

CWE-295

Affected Products

fortinet fortimanagerfortinet fortianalyzer

References

🔗 fortiguard.fortinet.com

CVE-2025-68482

Vulnerability Report

Description

CWE

Affected Products

References