PSIRT Path Traversal in CLI Summary An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') [CWE-22] in the command line interpreter of FortiOS, FortiPAM, FortiProxy and FortiSwitchManager may allow a privileged attacker to achieve arbitrary write or delete files via specifically crafted arguments to existing commands. Version Affected Solution FortiOS 7.6 7.6.0 through 7.6.4 Upgrade to 7.6.5 or above FortiOS 7.4 7.4.0 through 7.4.9 Upgrade to 7.4.10 or above FortiOS 7.2 7.2 all versions Migrate to a fixed release FortiOS 7.0 7.0 all versions Migrate to a fixed release FortiOS 6.4 6.4 all versions Migrate to a fixed release FortiPAM 1.8 Not affected Not Applicable FortiPAM 1.7 1.7.0 Upgrade to 1.7.1 or above FortiPAM 1.6 1.6 all versions Migrate to a fixed release FortiPAM 1.5 1.5 all versions Migrate to a fixed release FortiPAM 1.4 1.4 all versions Migrate to a fixed release FortiPAM 1.3 1.3 all versions Migrate to a fixed release FortiPAM 1.2 1.2 all versions Migrate to a fixed release FortiPAM 1.1 1.1 all versions Migrate to a fixed release FortiPAM 1.0 1.0 all versions Migrate to a fixed release FortiProxy 7.6 7.6.0 through 7.6.4 Upgrade to 7.6.5 or above FortiProxy 7.4 7.4.0 through 7.4.11 Upgrade to 7.4.12 or above FortiProxy 7.2 7.2 all versions Migrate to a fixed release FortiProxy 7.0 7.0 all versions Migrate to a fixed release FortiSwitchManager 7.2 7.2.0 through 7.2.7 Upgrade to 7.2.8 or above FortiSwitchManager 7.0 7.0.0 through 7.0.6 Upgrade to 7.0.7 or above Follow the recommended upgrade path using our tool at: https://docs.fortinet.com/upgrade-tool Virtual Patch named "FG-VD-59270.0day." is available in FMWP db update 25.120 Timeline 2026-04-14: Initial publication IR Number FG-IR-26-122 Published Date Apr 14, 2026 Component CLI Severity Medium Discovered Internal Attack Type Authenticated Known Exploited Yes CVSSv3 Score 5.4 Impact Escalation of privilege CVE ID CVE-2025-61624 Download CVRF CSAF STIX