virus logo PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.  

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

  Affected Product
 Version
 Date
 Severity
 Component

Total: 132

PSIRT
Description
Affected Products
Updated Date
Component
Severity
FG-IR-23-151 FortiOS & FortiProxy - DOS in headers management
CVE-2023-36641
A null pointer dereference [CWE-476] in FortiOS and FortiProxy SSL VPN may allow an authenticated attacker...
FortiOS 7.4.0, 7.2.5, 7.2.4, 7.2.3, 7.2.2 ... FortiProxy 7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Nov 14, 2023
Nov 14, 2023

Medium

Medium Severity
FG-IR-22-396 FortiOS & FortiProxy VM - Bypass of root file system integrity checks at boot time on VM
CVE-2023-28002
An improper validation of integrity check value vulnerability [CWE-354] in FortiOS and FortiProxy VMs may...
FortiOS 7.2.3, 7.2.2, 7.2.1, 7.2.0, 7.0.12 ... FortiProxy 7.2.7, 7.2.6, 7.2.5, 7.2.4, 7.2.3 ...
Nov 14, 2023
Nov 14, 2023

Medium

Medium Severity
FG-IR-23-385 curl and libcurl CVE-2023-38545 and CVE-2023-38546 vulnerabilities
CVE-2023-38545 CVE-2023-38545
CVE-2023-38545: severity HIGH (affects both libcurl and the curl tool) A heap-based buffer overflow flaw...
FortiExtender 7.4.1, 7.4.0, 7.2.3, 7.2.2, 7.2.1 ... FortiOS 7.4.1, 7.4.0, 7.2.6, 7.2.5, 7.2.4 ... FortiProxy 7.4.1, 7.4.0, 7.2.7, 7.2.6, 7.2.5 ...
Nov 14, 2023
Nov 14, 2023

Medium

Medium Severity
FG-IR-23-184 FortiOS & FortiProxy - Webproxy process denial of service
CVE-2023-41675
A use after free vulnerability [CWE-416] in FortiOS & FortiProxy may allow an unauthenticated remote...
FortiOS 7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ... FortiProxy 7.2.2, 7.2.1, 7.2.0, 7.0.8, 7.0.7 ...
Oct 10, 2023
Oct 10, 2023

Medium

Medium Severity
FG-IR-23-104 FortiOS - HTML injection in SAML and Security Fabric components
CVE-2023-36555
An improper neutralization of script-related HTML tags in a web page vulnerability [CWE-80] in FortiOS may...
FortiOS 7.2.5, 7.2.4, 7.2.3, 7.2.2, 7.2.1 ...
Oct 10, 2023
Oct 10, 2023

Low

Low Severity
FG-IR-23-090 FortiOS - IPS Engine evasion using custom TCP flags
CVE-2023-40718
An interpretation conflict vulnerability [CWE-436] in FortiOS IPS Engine may allow an unauthenticated...
FortiOS 7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ... IPS Engine 7.321, 7.166, 6.158
Oct 10, 2023
Oct 10, 2023

Medium

Medium Severity
FG-IR-23-318 FortiOS - Improper authorization via prof-admin profile
CVE-2023-41841
An improper authorization vulnerability [CWE-285] in FortiOS's WEB UI component may allow an authenticated...
FortiOS 7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Oct 10, 2023
Oct 10, 2023

High

High Severity
FG-IR-23-120 FortiOS - Plain-text credentials in GET request via SSL VPN web portal
CVE-2023-37935
A use of GET request method with sensitive query strings vulnerability [CWE-598] in the FortiOS SSL VPN...
FortiOS 7.4.0, 7.2.5, 7.2.4, 7.2.3, 7.2.2 ...
Oct 10, 2023
Oct 10, 2023
SSL-VPN
SSL-VPN

Medium

Medium Severity
FG-IR-23-139 FortiOS - REST API trusted host bypass
CVE-2023-33301
An improper access control vulnerability [CWE-284] in the FortiOS REST API component may allow an...
FortiOS 7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Oct 10, 2023
Oct 10, 2023
GUI
GUI

Medium

Medium Severity
FG-IR-23-106 FortiOS & FortiProxy - Stored XSS in guest management page
CVE-2023-29183
An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability...
FortiProxy 7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ... FortiOS 7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Sep 13, 2023
Sep 13, 2023
GUI
GUI

High

High Severity
FG-IR-23-149 FortiOS - Buffer overflow in execute extender command
CVE-2023-29182
A stack-based buffer overflow vulnerability [CWE-121] in FortiOS may allow a privileged attacker to...
FortiOS 7.0.3, 7.0.2, 7.0.1, 7.0.0, 6.4.14 ...
Aug 17, 2023
Aug 17, 2023

Medium

Medium Severity
FG-IR-23-028 FortiOS - Existing websocket connection persists after deleting API admin
CVE-2023-28001
An insufficient session expiration [CWE-613] vulnerability in FortiOS REST API may allow an attacker to...
FortiOS 7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Jul 11, 2023
Jul 11, 2023
GUI
GUI

Medium

Medium Severity
FG-IR-23-183 FortiOS/FortiProxy - Proxy mode with deep inspection - Stack-based buffer overflow
CVE-2023-33308
A stack-based overflow vulnerability [CWE-124] in FortiOS & FortiProxy may allow a remote attacker to...
FortiOS 7.2.3, 7.2.2, 7.2.1, 7.2.0, 7.0.10 ... FortiProxy 7.2.2, 7.2.1, 7.2.0, 7.0.9, 7.0.8 ...
Jul 11, 2023
Jul 11, 2023

Critical

Critical Severity
FG-IR-23-015 FortiOS & FortiProxy: authenticated user null pointer dereference in SSL-VPN
CVE-2023-33306 CVE-2023-33306
A NULL pointer dereference vulnerability [CWE-476] in SSL-VPN may allow an authenticated remote attacker...
FortiProxy 7.2.3, 7.2.2, 7.2.1, 7.2.0, 7.0.9 ... FortiOS 7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Jun 16, 2023
Jun 16, 2023
SSL-VPN
SSL-VPN

Medium

Medium Severity
FG-IR-23-095 FortiOS & FortiProxy - Access of uninitialized pointer in administrative interface API
CVE-2023-29178
An access of uninitialized pointer vulnerability [CWE-824] in FortiOS administrative interface API may...
FortiProxy 7.2.3, 7.2.2, 7.2.1, 7.2.0, 7.0.9 ... FortiOS 7.2.4, 7.2.3, 7.2.2, 7.2.1, 7.2.0 ...
Jun 12, 2023
Jun 12, 2023
GUI
GUI

Low

Low Severity