PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

Gain Windows privileges with FortiClient vpn before logon and untrusted certificate

When the "VPN before logon" feature of FortiClient Windows is enabled (disabled by default), and when the server certificate is...

Dec 13, 2017 Risk

IR Number: FG-IR-17-070

SSL VPN Web Portal user credentials may be leaked to super_admins

An admin user with super_admin privileges (i.e. with a super_admin profile) may view the current sslvpn web portal session info,...

Dec 08, 2017 Risk

IR Number: FG-IR-17-172

FortiCloud XSS vulnerability in on-demand sandbox GUI

Before Dec 5th, 2017, a Cross-Site-Scripting (XSS) vulnerability in forticloud.com on-demand sandbox GUI may have allowed an authenticated...

Dec 08, 2017 Risk

IR Number: FG-IR-17-259

Refine RESET

PSIRT Advisories

Refine
RESET