CVE-2026-25815 – Fortinet FortiOS LDAP Credentials Decryption Vulnerability

CVE ID : CVE-2026-25815

Published : Feb. 5, 2026, 10:15 p.m. | 1 hour, 3 minutes ago

Description : Fortinet FortiOS through 7.6.6 allows attackers to decrypt LDAP credentials stored in device configuration files, as exploited in the wild from 2025-12-16 through 2026 (by default, the encryption key is the same across all customers’ installations). NOTE: the Supplier’s position is that the instance of CWE-1394 is not a vulnerability because customers “are supposed to enable” a non-default option that eliminates the weakness. However, that non-default option can disrupt functionality as shown in the “Managing FortiGates with private data encryption” document, and is therefore intentionally not a default option.

Severity: 3.2 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-23623 – Collabora Online vulnerable to Authorization Bypass

CVE-2026-1971 – Edimax BR-6288ACL wiz_WISP24gmanual.asp wiz_WISP24gmanual cross site scripting

CVE-2025-68157 – webpack buildHttp HttpUriPlugin allowedUris bypass via HTTP redirects

CVE-2025-68458 – webpack buildHttp: allowedUris allow-list bypass via URL userinfo (@) leading to build-time SSRF behavior