PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.  

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

A Host Header Redirection vulnerability exists in FortiOS SSL-VPN web portal: when an attacker submits specially crafted HTTP...

FortiGate 5.4, 5.6, 6.0
Jan 03, 2020 Risk IR Number: FG-IR-19-002
Use of a hardcoded cryptographic key in the FortiGuard services communication protocol may allow a Man in the middle with knowledge...

Dec 05, 2019 Risk IR Number: FG-IR-18-100
CVE-2019-11477:The Linux kernel is vulnerable to an integer overflow in the 16 bit width of  TCP_SKB_CB(skb)->tcp_gso_segs.  A...

Nov 29, 2019 Risk IR Number: FG-IR-19-180
Failure to sanitize the error or message handling parameters in the SSL VPN web portal may allow an attacker to perform a Cross-site...

Nov 26, 2019 Risk IR Number: FG-IR-18-383
A heap buffer overflow vulnerability in the FortiOS SSL VPN web portal may cause the SSL VPN web service termination for logged...

Nov 26, 2019 Risk IR Number: FG-IR-18-388
A path traversal vulnerability in the FortiOS SSL VPN web portal may allow an unauthenticated attacker to download FortiOS system...

Nov 26, 2019 Risk IR Number: FG-IR-18-384
An Improper Neutralization of Input vulnerability in the hostname parameter of a DHCP packet under DHCP monitor page may allow...

Nov 25, 2019 Risk IR Number: FG-IR-19-184
A privilege escalation vulnerability in FortiOS may allow admin users to elevate their profile to super_admin, via restoring modified...

Nov 14, 2019 Risk IR Number: FG-IR-17-053
VM appliance lack of root file system integrity check may allow an attacker with read/write access to the VM image (before it...

Nov 14, 2019 Risk IR Number: FG-IR-19-017
Improper permission or value checking in the CLI console may allow a non-privileged user to obtain plaint text private keys of...

Nov 14, 2019 Risk IR Number: FG-IR-19-134
Multiple integer overflow and out of bounds read/write vulnerabilities in the SSL VPN web-mode SSH client may allow an unauthenticated...

Nov 14, 2019 Risk IR Number: FG-IR-19-099
An Improper Input Validation vulnerability in the SSL VPN portal of FortiOS may allow an unauthenticated remote attacker to crash...

Nov 08, 2019 Risk IR Number: FG-IR-19-236
A clear text storage of sensitive information vulnerability in FortiClient for Mac may allow a local attacker  to read sensitive...

Nov 08, 2019 Risk IR Number: FG-IR-19-227
An OS command injection vulnerability in FortiExtender CLI admin console may allow unauthorized administrators to run arbitrary...

Nov 01, 2019 Risk IR Number: FG-IR-19-273
An Improper Neutralization of Special Elements used in a Command vulnerability in one of FortiClient for Mac OS root processes,...

Oct 29, 2019 Risk IR Number: FG-IR-19-210