Apache Struts RCE Vulnerability
Summary
Multiple Remote Code Execution vulnerabilities (CVE-2017-9805, CVE-2017-9804, CVE-2017-9793) are affecting Apache Struts.
Impact Detail
Add tier2 products per Chris 's suggestion:
https://fortivision.fortinet.com/index.php?/topic/14315-apache-struts-vulnerability/&tab=comments#comment-48497
Affected Products
The following Fortinet products are NOT affected:FortiOS
FortiAP
FortiSwitch
FortiAnalyzer
Currently all above products not using Apache Struts, so all current and future Apache Struts CVEs will not impact these products.