CVE-2025-22252

CRITICAL

FortiProxy 7.6.0-7.6.1, FortiSwitchManager 7.2.5, FortiOS 7.4.4-7.4.6, 7.6.0 - Authentication Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-22252. PoCs published by cybersecplayground.

AI-analyzed exploit summary The repository contains detailed technical writeups for multiple CVEs, including CVE-2025-22252, with in-depth descriptions, proof-of-concept examples, and mitigation recommendations. The content is well-structured and provides actionable insights for security researchers.

Description

A missing authentication for critical function in Fortinet FortiProxy versions 7.6.0 through 7.6.1, FortiSwitchManager version 7.2.5, and FortiOS versions 7.4.4 through 7.4.6 and version 7.6.0 may allow an attacker with knowledge of an existing admin account to access the device as a valid admin via an authentication bypass.

Exploits (1)

github WRITEUP 7 stars

by cybersecplayground · poc

https://github.com/cybersecplayground/PoC-and-CVE-Reports/tree/main/2025/CVE-2025-22252.md

View Code ZIP pw:eip

The repository contains detailed technical writeups for multiple CVEs, including CVE-2025-22252, with in-depth descriptions, proof-of-concept examples, and mitigation recommendations. The content is well-structured and provides actionable insights for security researchers.

Classification

Writeup 95%

Attack Type

Other

Complexity

Moderate

Reliability

Theoretical

Target: Various (e.g., Ivanti Connect Secure, Zabbix, Check Point VPN, Bricks Builder)

No auth needed

Prerequisites: Access to vulnerable endpoints · Basic understanding of exploit techniques

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory

https://fortiguard.fortinet.com/psirt/FG-IR-24-472

Scores

CVSS v3 9.8

EPSS 0.0024

EPSS Percentile 48.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-306

Status published

Products (4)

fortinet/fortios 7.6.0

fortinet/fortios 7.4.4 - 7.4.7

fortinet/fortiproxy 7.6.0

fortinet/fortiswitchmanager 7.2.5

Published May 28, 2025

Tracked Since Feb 18, 2026