PSIRT Advisories

The FortiGuard Labs Product Security Incident Response Team (PSIRT) continually test Fortinet hardware and software products, looking for vulnerabilities and weaknesses. Any such findings are fed back to Fortinet's development teams and serious issues are described along with protective solutions in the advisories below.

New types of side channel attacks impact most processors including Intel, AMD, ARM, etc. These attacks allow malicious userspace...

May 24, 2019 Risk IR Number: FG-IR-18-002
A Host Header Redirection vulnerability exists in FortiOS SSL-VPN web portal: when an attacker submits specially crafted HTTP...

May 17, 2019 Risk IR Number: FG-IR-19-002
A heap buffer overflow vulnerability in the FortiOS SSL VPN web portal may cause the SSL VPN web service termination for logged...

May 17, 2019 Risk IR Number: FG-IR-18-388