CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2025-53847

criticalcovered by 1 sourcefirst seen 2026-04-14
CVSSv3 Score: 6.2 A missing authentication for critical function vulnerability [CWE-306] in FortiOS and FortiSwitchManager CAPWAP daemon may allow a local unauthenticated attacker on the same local IP subnet to write device configuration via specially crafted requests. To be successful, this attack requires the targeted FortiGate device to run a specific, non default configuration. Revised on 2026-04-14 00:00:00

CSIRTS triage

What
A missing authentication vulnerability allows a local unauthenticated attacker to write device configurations.
Who is affected
Local users on the same IP subnet as the affected FortiGate device.
Urgency
Remediation is critical due to the potential for unauthorized configuration changes.
Action
Apply the necessary updates to FortiOS and FortiSwitchManager.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2025-53847

Get an email if CVE-2025-53847 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2025-53847

CVE.org record

Embed the live status

CVE-2025-53847 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2025-53847 status](https://www.csirts.com/badge/CVE-2025-53847)](https://www.csirts.com/cve/CVE-2025-53847)