CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Missing Authentication for critical function in CAPWAP daemon

criticalCVE-2025-53847
CVSSv3 Score: 6.2 A missing authentication for critical function vulnerability [CWE-306] in FortiOS and FortiSwitchManager CAPWAP daemon may allow a local unauthenticated attacker on the same local IP subnet to write device configuration via specially crafted requests. To be successful, this attack requires the targeted FortiGate device to run a specific, non default configuration. Revised on 2026-04-14 00:00:00

CSIRTS triage

What
A missing authentication vulnerability allows a local unauthenticated attacker to write device configurations.
Who is affected
Local users on the same IP subnet as the affected FortiGate device.
Urgency
Remediation is critical due to the potential for unauthorized configuration changes.
Action
Apply the necessary updates to FortiOS and FortiSwitchManager.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch FortiOS

Get an email when a new FortiOS advisory drops — max one per day, one-click unsubscribe.

Details

Source
Fortinet FortiGuard PSIRT (INTL · vendor-psirt · site)
Severity
critical
Published
2026-04-14
Exploitation
Not in CISA KEV at last sync

Original advisory: https://fortiguard.fortinet.com/psirt/FG-IR-26-125

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2025-53847coverage & exploitation statusNVD · CVE.org

Recent advisories for Missing Authentication for

A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.

More from Fortinet FortiGuard PSIRT