CVE-2025-53951_CVE-2025-53951

4.9 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:F/RL:O/RC:C

Description

An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiDLP Agent's Outlookproxy plugin for Windows 11.5.1 and 11.4.2 through 11.4.6 and 11.3.2 through 11.3.4 and 11.2.0 through 11.2.3 and 11.1.1 through 11.1.2 and 11.0.1 and 10.5.1 and 10.4.0, and 10.3.1 may allow an authenticated attacker to escalate their privilege to LocalService via sending a crafted request to a local listening port.

Basic Information

ID CVE-2025-53951

Source fortinet

Published Oct 16, 2025 at 13:58

Affected Product

Vendor Fortinet

Product FortiDLP

Version 11.5.1

Affected Versions Fortinet FortiDLP 11.5.1
Fortinet FortiDLP 11.4.2
Fortinet FortiDLP 11.3.2
Fortinet FortiDLP 11.2.3
Fortinet FortiDLP 11.2.0
Fortinet FortiDLP 11.1.1
Fortinet FortiDLP 11.0.1
Fortinet FortiDLP 10.5.1
Fortinet FortiDLP 10.4.0
Fortinet FortiDLP 10.3.1

CWE Classification

CWE-22

References

fortiguard.fortinet.com /psirt/FG-IR-25-628

{
    "lastseen": "",
    "description": "An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiDLP Agent's Outlookproxy plugin for Windows 11.5.1 and 11.4.2 through 11.4.6 and 11.3.2 through 11.3.4 and 11.2.0 through 11.2.3 and 11.1.1 through 11.1.2 and  11.0.1 and 10.5.1 and 10.4.0, and 10.3.1 may allow an authenticated attacker to escalate their privilege to LocalService via sending a crafted request to a local listening port.",
    "published": "2025-10-16T13:58:21.749Z",
    "modified": "2025-10-16T13:58:21.749Z",
    "type": "cve",
    "title": "CVE-2025-53951",
    "source": "fortinet",
    "references": "https://fortiguard.fortinet.com/psirt/FG-IR-25-628",
    "id": "CVE-2025-53951",
    "bulletinFamily": "",
    "cwe": [
        "CWE-22"
    ],
    "cvelist": null,
    "sourceData": "Fortinet FortiDLP 11.5.1\nFortinet FortiDLP 11.4.2\nFortinet FortiDLP 11.3.2\nFortinet FortiDLP 11.2.3\nFortinet FortiDLP 11.2.0\nFortinet FortiDLP 11.1.1\nFortinet FortiDLP 11.0.1\nFortinet FortiDLP 10.5.1\nFortinet FortiDLP 10.4.0\nFortinet FortiDLP 10.3.1",
    "sourceHref": "",
    "cvss": {
        "score": 4.9,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:F/RL:O/RC:C",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "FortiDLP",
    "version": "11.5.1",
    "vendor": "Fortinet",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}