CVE-2025-67862

Vulnerability

An Internal Asset Exposed to Unsafe Debug Access Level or State vulnerability [CWE-1244] exists in Fortinet FortiOS versions 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2.0 through 7.2.10, 7.0.0 through 7.0.16, and all versions of 6.4, as well as FortiProxy versions 7.6.0 through 7.6.3, 7.4.0 through 7.4.10, and 7.2.0 through 7.2.14, and all versions of 7.0. This vulnerability allows for the execution of Lua scripts through crafted Command Line Interface (CLI) commands [1].

Exploitation

An authenticated administrator with access to the CLI is required to exploit this vulnerability. The attacker needs to craft specific CLI commands that trigger the execution of arbitrary Lua scripts. The exact method of crafting these commands is not detailed in the available references, but it involves interacting with the CLI in an unintended way to escape to script execution [1].

Impact

Successful exploitation allows an authenticated administrator to execute arbitrary Lua scripts on the affected FortiOS or FortiProxy devices. This could lead to a compromise of the system, potentially allowing for further unauthorized actions, information disclosure, or denial of service, depending on the privileges of the authenticated user and the capabilities of the executed scripts [1].

Mitigation

Fortinet has released fixes for this vulnerability. Affected FortiOS versions require upgrading to 7.6.3 or above, 7.4.8 or above, 7.2.11 or above, or 7.0.17 or above. Affected FortiProxy versions require upgrading to 7.6.4 or above, 7.4.11 or above, or 7.2.15 or above. FortiOS 6.4 and FortiProxy 7.0 are also affected and require upgrading to a fixed version. Users can consult the Fortinet upgrade tool for specific paths [1].