PSIRT Restricted CLI escape using Lua Summary An Internal Asset Exposed to Unsafe Debug Access Level or State vulnerability [CWE-1244] in FortiOS and FortiProxy may allow an authenticated admin to execute lua scripts via crafted CLI commands. Version Affected Solution FortiOS 7.6 7.6.0 through 7.6.2 Upgrade to 7.6.3 or above FortiOS 7.4 7.4.0 through 7.4.7 Upgrade to 7.4.8 or above FortiOS 7.2 7.2.0 through 7.2.10 Upgrade to 7.2.11 or above FortiProxy 7.6 7.6.0 through 7.6.3 Upgrade to 7.6.4 or above FortiProxy 7.4 7.4.0 through 7.4.10 Upgrade to 7.4.11 or above FortiProxy 7.2 7.2.0 through 7.2.14 Upgrade to 7.2.15 or above Follow the recommended upgrade path using our tool at: https://docs.fortinet.com/upgrade-tool Acknowledgement Fortinet is pleased to thank The UK's National Cyber Security Centre (NCSC) for reporting this vulnerability under responsible disclosure. Timeline 2026-06-09: Initial publication IR Number FG-IR-26-143 Published Date Jun 9, 2026 Component CLI Severity Medium Discovered External Attack Type Authenticated Known Exploited No CVSSv3 Score 6.0 Impact Execute unauthorized code or commands CVE ID CVE-2025-67862 Download CVRF CSAF