PSIRT Advisories

The FortiGuard Labs Product Security Incident Response Team (PSIRT) continually test Fortinet hardware and software products, looking for vulnerabilities and weaknesses. Any such findings are fed back to Fortinet's development teams and serious issues are described along with protective solutions in the advisories below.

An improper authorization vulnerability in FortiADC may allow a remote authenticated user with low privileges to perform certain...

Apr 06, 2020 Risk IR Number: FG-IR-20-013
An improper neutralization of input vulnerability in FortiManager GUI may allow an authenticated attacker to perform an XSS (Cross...

Mar 11, 2020 Risk IR Number: FG-IR-19-271
An improper neutralization of input vulnerability in the FortiADC may allow an attacker to execute a stored Cross Site Scripting...

FortiADC 5.3
Mar 09, 2020 Risk IR Number: FG-IR-19-220
FortiGate models which do not contain and embedded TRNG may suffer from insufficient entropy ("seed") in the CTR DRBG random data...

Feb 13, 2020 Risk IR Number: FG-IR-19-186
A use of hard-coded cryptographic key vulnerability in FortiSIEM may allow a remote unauthenticated attacker to obtain SSH access...

Jan 15, 2020 Risk IR Number: FG-IR-19-296
A Host Header Redirection vulnerability exists in FortiOS SSL-VPN web portal: when an attacker submits specially crafted HTTP...

FortiGate 5.4, 5.6, 6.0
Jan 03, 2020 Risk IR Number: FG-IR-19-002
An Improper Neutralization of Input vulnerability in the hostname parameter of a DHCP packet under DHCP monitor page may allow...

Nov 25, 2019 Risk IR Number: FG-IR-19-184
Use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup file may allow an attacker with...

Nov 19, 2019 Risk IR Number: FG-IR-19-007
A privilege escalation vulnerability in FortiOS may allow admin users to elevate their profile to super_admin, via restoring modified...

Nov 14, 2019 Risk IR Number: FG-IR-17-053
A clear text storage of sensitive information vulnerability in FortiClient for Mac may allow a local attacker  to read sensitive...

Nov 08, 2019 Risk IR Number: FG-IR-19-227
New types of side channel attacks impact most processors including Intel, AMD, ARM, etc. These attacks allow malicious userspace...

Aug 26, 2019 Risk IR Number: FG-IR-18-002
The Missing Encryption Of Sensitive Data vulnerability in FortiClient may allow an attacker to access VPN session cookie from...

Apr 23, 2019 Risk IR Number: FG-IR-19-110
A cleartext transmission of sensitive information vulnerability in FortiManager may allow an unauthenticated attacker in a man...

Apr 23, 2019 Risk IR Number: FG-IR-18-051
An information exposure vulnerability in the admin portal of FortiSIEM may allow an authenticated admin to retrieve the LDAP server...

Mar 29, 2019 Risk IR Number: FG-IR-18-382
There is a Null pointer dereference in the NDIS Miniport drivers in FortiClient on Windows, which may be leveraged by an unprivileged...

Jan 11, 2019 Risk IR Number: FG-IR-18-092