PSIRT Advisories
The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.
For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.
PSIRT
Description
Affected Products
Updated Date
Component
Severity
FG-IR-23-151 FortiOS & FortiProxy - DOS in headers management
CVE-2023-36641
CVE-2023-36641
A null pointer dereference [CWE-476] in FortiOS and FortiProxy SSL VPN may allow an authenticated attacker...
FortiOS
7.4.0, 7.2.5, 7.2.4, 7.2.3, 7.2.2 ...
FortiProxy
7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Nov 14, 2023
Nov 14, 2023
Medium
Medium Severity
FG-IR-22-396 FortiOS & FortiProxy VM - Bypass of root file system integrity checks at boot time on VM
CVE-2023-28002
CVE-2023-28002
An improper validation of integrity check value vulnerability [CWE-354] in FortiOS and FortiProxy VMs may...
FortiOS
7.2.3, 7.2.2, 7.2.1, 7.2.0, 7.0.12 ...
FortiProxy
7.2.7, 7.2.6, 7.2.5, 7.2.4, 7.2.3 ...
Nov 14, 2023
Nov 14, 2023
Medium
Medium Severity
FG-IR-23-385 curl and libcurl CVE-2023-38545 and CVE-2023-38546 vulnerabilities
CVE-2023-38545 CVE-2023-38545
CVE-2023-38545 CVE-2023-38545
CVE-2023-38545: severity HIGH (affects both libcurl and the curl tool) A heap-based buffer overflow flaw...
FortiOS
7.4.1, 7.4.0, 7.2.6, 7.2.5, 7.2.4 ...
Nov 14, 2023
Nov 14, 2023
Medium
Medium Severity
FG-IR-23-184 FortiOS & FortiProxy - Webproxy process denial of service
CVE-2023-41675
CVE-2023-41675
A use after free vulnerability [CWE-416] in FortiOS & FortiProxy may allow an unauthenticated remote...
FortiOS
7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
FortiProxy
7.2.2, 7.2.1, 7.2.0, 7.0.8, 7.0.7 ...
Oct 10, 2023
Oct 10, 2023
Medium
Medium Severity
FG-IR-23-104 FortiOS - HTML injection in SAML and Security Fabric components
CVE-2023-36555
CVE-2023-36555
An improper neutralization of script-related HTML tags in a web page vulnerability [CWE-80] in FortiOS may...
FortiOS
7.2.5, 7.2.4, 7.2.3, 7.2.2, 7.2.1 ...
Oct 10, 2023
Oct 10, 2023
Low
Low Severity
FG-IR-23-090 FortiOS - IPS Engine evasion using custom TCP flags
CVE-2023-40718
CVE-2023-40718
An interpretation conflict vulnerability [CWE-436] in FortiOS IPS Engine may allow an unauthenticated...
FortiOS
7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
IPS Engine
7.321, 7.166, 6.158
Oct 10, 2023
Oct 10, 2023
Medium
Medium Severity
FG-IR-23-318 FortiOS - Improper authorization via prof-admin profile
CVE-2023-41841
CVE-2023-41841
An improper authorization vulnerability [CWE-285] in FortiOS's WEB UI component may allow an authenticated...
FortiOS
7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Oct 10, 2023
Oct 10, 2023
High
High Severity
FG-IR-23-120 FortiOS - Plain-text credentials in GET request via SSL VPN web portal
CVE-2023-37935
CVE-2023-37935
A use of GET request method with sensitive query strings vulnerability [CWE-598] in the FortiOS SSL VPN...
FortiOS
7.4.0, 7.2.5, 7.2.4, 7.2.3, 7.2.2 ...
Oct 10, 2023
Oct 10, 2023
SSL-VPN
SSL-VPN
Medium
Medium Severity
FG-IR-23-139 FortiOS - REST API trusted host bypass
CVE-2023-33301
CVE-2023-33301
An improper access control vulnerability [CWE-284] in the FortiOS REST API component may allow an...
FortiOS
7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Oct 10, 2023
Oct 10, 2023
GUI
GUI
Medium
Medium Severity
FG-IR-23-106 FortiOS & FortiProxy - Stored XSS in guest management page
CVE-2023-29183
CVE-2023-29183
An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability...
FortiProxy
7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
FortiOS
7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Sep 13, 2023
Sep 13, 2023
GUI
GUI
High
High Severity
FG-IR-23-149 FortiOS - Buffer overflow in execute extender command
CVE-2023-29182
CVE-2023-29182
A stack-based buffer overflow vulnerability [CWE-121] in FortiOS may allow a privileged attacker to...
FortiOS
7.0.3, 7.0.2, 7.0.1, 7.0.0, 6.4.14 ...
Aug 17, 2023
Aug 17, 2023
Medium
Medium Severity
FG-IR-23-028 FortiOS - Existing websocket connection persists after deleting API admin
CVE-2023-28001
CVE-2023-28001
An insufficient session expiration [CWE-613] vulnerability in FortiOS REST API may allow an attacker to...
FortiOS
7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Jul 11, 2023
Jul 11, 2023
GUI
GUI
Medium
Medium Severity
FG-IR-23-183 FortiOS/FortiProxy - Proxy mode with deep inspection - Stack-based buffer overflow
CVE-2023-33308
CVE-2023-33308
A stack-based overflow vulnerability [CWE-124] in FortiOS & FortiProxy may allow a remote attacker to...
FortiOS
7.2.3, 7.2.2, 7.2.1, 7.2.0, 7.0.10 ...
FortiProxy
7.2.2, 7.2.1, 7.2.0, 7.0.9, 7.0.8 ...
Jul 11, 2023
Jul 11, 2023
Critical
Critical Severity
FG-IR-23-015 FortiOS & FortiProxy: authenticated user null pointer dereference in SSL-VPN
CVE-2023-33306 CVE-2023-33306
CVE-2023-33306 CVE-2023-33306
A NULL pointer dereference vulnerability [CWE-476] in SSL-VPN may allow an authenticated remote attacker...
FortiProxy
7.2.3, 7.2.2, 7.2.1, 7.2.0, 7.0.9 ...
FortiOS
7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Jun 16, 2023
Jun 16, 2023
SSL-VPN
SSL-VPN
Medium
Medium Severity
FG-IR-23-095 FortiOS & FortiProxy - Access of uninitialized pointer in administrative interface API
CVE-2023-29178
CVE-2023-29178
An access of uninitialized pointer vulnerability [CWE-824] in FortiOS administrative interface API may...
FortiProxy
7.2.3, 7.2.2, 7.2.1, 7.2.0, 7.0.9 ...
FortiOS
7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Jun 12, 2023
Jun 12, 2023
GUI
GUI
Low
Low Severity