PSIRT Advisories

The FortiGuard Labs Product Security Incident Response Team (PSIRT) continually test Fortinet hardware and software products, looking for vulnerabilities and weaknesses. Any such findings are fed back to Fortinet's development teams and serious issues are described along with protective solutions in the advisories below.

Use of a hard-coded cryptographic key to encrypt security sensitive data in configuration in FortiClient for Windows may allow...

FortiClient 6.0, 6.2
Jun 01, 2020 Risk IR Number: FG-IR-19-194
An unquoted service path vulnerability in the FortiClient FortiTray component may allow an attacker to gain elevated privileges...

FortiClient 6.2
Mar 09, 2020 Risk IR Number: FG-IR-19-281
An Insecure Temporary File (CWE-377) vulnerability in FortiClient for Windows may allow a local user to gain elevated privileges...

FortiClient 6.2, 6.0
May 25, 2020 Risk IR Number: FG-IR-20-040