Vulnerability Details CVE-2025-55717
A cleartext storage of sensitive information vulnerability [CWE-312] vulnerability in Fortinet FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0 through 7.4.4, FortiMail 7.2.0 through 7.2.7, FortiMail 7.0.0 through 7.0.8, FortiRecorder 7.2.0 through 7.2.3, FortiRecorder 7.0 all versions, FortiRecorder 6.4 all versions, FortiVoice 7.2.0, FortiVoice 7.0.0 through 7.0.6 may allow an authenticated malicious administrator to obtain user's secrets via CLI commands. Practical exploitability is limited by conditions out of the control of the attacker: An admin must log in to the targeted device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.3%
CVSS Severity
CVSS v3 Score 4.0
Products affected by CVE-2025-55717
-
cpe:2.3:a:fortinet:fortimail:7.0.0
-
cpe:2.3:a:fortinet:fortimail:7.0.1
-
cpe:2.3:a:fortinet:fortimail:7.0.2
-
cpe:2.3:a:fortinet:fortimail:7.0.3
-
cpe:2.3:a:fortinet:fortimail:7.0.4
-
cpe:2.3:a:fortinet:fortimail:7.0.5
-
cpe:2.3:a:fortinet:fortimail:7.0.6
-
cpe:2.3:a:fortinet:fortimail:7.0.7
-
cpe:2.3:a:fortinet:fortimail:7.0.8
-
cpe:2.3:a:fortinet:fortimail:7.2.0
-
cpe:2.3:a:fortinet:fortimail:7.2.1
-
cpe:2.3:a:fortinet:fortimail:7.2.2
-
cpe:2.3:a:fortinet:fortimail:7.2.3
-
cpe:2.3:a:fortinet:fortimail:7.2.4
-
cpe:2.3:a:fortinet:fortimail:7.2.5
-
cpe:2.3:a:fortinet:fortimail:7.2.6
-
cpe:2.3:a:fortinet:fortimail:7.2.7
-
cpe:2.3:a:fortinet:fortimail:7.4.0
-
cpe:2.3:a:fortinet:fortimail:7.4.1
-
cpe:2.3:a:fortinet:fortimail:7.4.2
-
cpe:2.3:a:fortinet:fortimail:7.4.3
-
cpe:2.3:a:fortinet:fortimail:7.4.4
-
cpe:2.3:a:fortinet:fortimail:7.6.0
-
cpe:2.3:a:fortinet:fortimail:7.6.1
-
cpe:2.3:a:fortinet:fortimail:7.6.2
-
cpe:2.3:a:fortinet:fortirecorder:6.4.0
-
cpe:2.3:a:fortinet:fortirecorder:6.4.1
-
cpe:2.3:a:fortinet:fortirecorder:6.4.2
-
cpe:2.3:a:fortinet:fortirecorder:6.4.3
-
cpe:2.3:a:fortinet:fortirecorder:6.4.4
-
cpe:2.3:a:fortinet:fortirecorder:6.4.5
-
cpe:2.3:a:fortinet:fortirecorder:6.4.6
-
cpe:2.3:a:fortinet:fortirecorder:7.0.0
-
cpe:2.3:a:fortinet:fortirecorder:7.0.1
-
cpe:2.3:a:fortinet:fortirecorder:7.0.2
-
cpe:2.3:a:fortinet:fortirecorder:7.0.3
-
cpe:2.3:a:fortinet:fortirecorder:7.0.4
-
cpe:2.3:a:fortinet:fortirecorder:7.0.5
-
cpe:2.3:a:fortinet:fortirecorder:7.0.6
-
cpe:2.3:a:fortinet:fortirecorder:7.2.0
-
cpe:2.3:a:fortinet:fortirecorder:7.2.1
-
cpe:2.3:a:fortinet:fortirecorder:7.2.2
-
cpe:2.3:a:fortinet:fortirecorder:7.2.3
-
cpe:2.3:a:fortinet:fortivoice:7.0.0
-
cpe:2.3:a:fortinet:fortivoice:7.0.1
-
cpe:2.3:a:fortinet:fortivoice:7.0.2
-
cpe:2.3:a:fortinet:fortivoice:7.0.3
-
cpe:2.3:a:fortinet:fortivoice:7.0.4
-
cpe:2.3:a:fortinet:fortivoice:7.0.5
-
cpe:2.3:a:fortinet:fortivoice:7.0.6
-
cpe:2.3:a:fortinet:fortivoice:7.2.0