PSIRT Advisories
The FortiGuard Labs Product Security Incident Response Team (PSIRT) continually test Fortinet hardware and software products, looking for vulnerabilities and weaknesses. Any such findings are fed back to Fortinet's development teams and serious issues are described along with protective solutions in the advisories below.
An Improper Neutralization of Special Elements used in a Command vulnerability in one of FortiClient for Mac OS root processes,...
Two improper access control vulnerabilities in FortiMail admin webUI may allow administrators to perform privileged functions...
Part of FortiOS models by default suffer from insufficient entropy ("seed") in CTR DRBG random data software generator.Unsufficient...
FortiClient for Windows could be subject to the following shut down or tampering attempts:a) User Interface or Command Line shut...
Multiple information exposure vulnerabilities in FortiOS may allow an unauthenticated attacker to perform some information gathering...
An information exposure vulnerability in the external authentication profile form of FortiSIEM may allow an authenticated attacker...
An Improper Neutralization of Input During Web Page Generation in FortiClientEMS may allow a remote attacker to execute unauthorized...
Some models of FortiAnalyzer and FortiManager have a default setting of "Failover", for remote IPMI access; this means that if...
Improper implementations of the HTTP/2 protocol can lead to a variety denial-of-service (DoS) attacks.The related CVEs are:CVE-2019-9511,...
An Improper Authorization vulnerability in the SSL VPN web portal may allow an unauthenticated attacker to change the password...
11 zero day vulnerabilities (aka. URGENT/11) were disclosed in VxWorks® TCP/IP stack (IPnet):CVE-2019-12255 - TCP Urgent Pointer...
New types of side channel attacks impact most processors including Intel, AMD, ARM, etc. These attacks allow malicious userspace...
Failure to sanitize input in the SSL VPN web portal may allow an attacker to perform a reflected Cross-site Scripting (XSS) attack...
An Use of Hard-coded Credentials vulnerability in FortiRecorder may allow an unauthenticated attacker with knowledge of the aforementioned...
An information exposure vulnerability in FortiOS WEB UI may allow an unauthenticated attacker to gain platform information such...