Main Vulnerability Database Vulnerabilities #VU122535

#VU122535 Improper verification of source of a communication channel in FortiOS - CVE-2025-62439

Published: February 10, 2026

Vulnerability identifier: #VU122535

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-62439

CWE-ID: CWE-940

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
FortiOS

Software vendor:
Fortinet, Inc

Description

The vulnerability allows a remote user to gain unauthorized access to protected network.

The vulnerability exists due to firewall policy bypass in FSSO Terminal Services Agent. A remote authenticated user with knowledge of FSSO policy configurations can gain unauthorized access to protected network resources via crafted requests.

Remediation

The vulnerability is resolved with the latest version of ForiOS with FSSO TS Agent version 5.0 build 0324 and later.

External links

https://www.fortiguard.com/psirt/FG-IR-25-384

#VU122535 Improper verification of source of a communication channel in FortiOS - CVE-2025-62439

Description

Remediation

External links

Please verify you're human