Refine


Filter by Date:
All
2020
Filter by Risk Level:
All

PSIRT Advisories

The FortiGuard Labs Product Security Incident Response Team (PSIRT) continually test Fortinet hardware and software products, looking for vulnerabilities and weaknesses. Any such findings are fed back to Fortinet's development teams and serious issues are described along with protective solutions in the advisories below.

FortiSIEM default SSH key for the "tunneluser" account is the same across all appliances
A use of hard-coded cryptographic key vulnerability in FortiSIEM may allow a remote unauthenticated attacker to obtain SSH access...
Jan 15, 2020 Risk IR Number: FG-IR-19-296
FortiSIEM Database hard-coded Credentials
A hard-coded password vulnerability in the FortiSIEM database component may allow attackers to access the device database via...
FortiSIEM 5.0, 5.1, 5.2
Jan 13, 2020 Risk IR Number: FG-IR-19-195
Dragonblood vulnerabilities in WiFi WPA3 standard implementation
Multiple vulnerabilities, referred to as Dragonblood, exist in WiFi WPA3 standard implementation .Dragonblood vulnerabilities...
Jan 03, 2020 Risk IR Number: FG-IR-19-107
FortiMail admin privilege escalation through improper user profile control
Two improper access control vulnerabilities in FortiMail admin webUI may allow administrators to perform privileged functions...
Jan 03, 2020 Risk IR Number: FG-IR-19-237
FortiOS SSL VPN web portal Host Header Redirection
A Host Header Redirection vulnerability exists in FortiOS SSL-VPN web portal: when an attacker submits specially crafted HTTP...
FortiGate 5.4, 5.6, 6.0
Jan 03, 2020 Risk IR Number: FG-IR-19-002
Hardcoded cryptographic key in the FortiGuard services communication protocol
Use of a hardcoded cryptographic key in the FortiGuard services communication protocol may allow a Man in the middle with knowledge...
Dec 05, 2019 Risk IR Number: FG-IR-18-100
TCP SACK panic attack- Linux Kernel Vulnerabilities- CVE-2019-11477, CVE-2019-11478 & CVE-2019-11479
CVE-2019-11477:The Linux kernel is vulnerable to an integer overflow in the 16 bit width of  TCP_SKB_CB(skb)->tcp_gso_segs.  A...
Nov 29, 2019 Risk IR Number: FG-IR-19-180
FortiOS multiple pre-auth XSS vulnerabilities on SSL VPN
Failure to sanitize the error or message handling parameters in the SSL VPN web portal may allow an attacker to perform a Cross-site...
Nov 26, 2019 Risk IR Number: FG-IR-18-383
SSL VPN buffer overrun when parsing javascript href content
A heap buffer overflow vulnerability in the FortiOS SSL VPN web portal may cause the SSL VPN web service termination for logged...
Nov 26, 2019 Risk IR Number: FG-IR-18-388
FortiOS system file leak through SSL VPN via specially crafted HTTP resource requests
A path traversal vulnerability in the FortiOS SSL VPN web portal may allow an unauthenticated attacker to download FortiOS system...
Nov 26, 2019 Risk IR Number: FG-IR-18-384
XSS vulnerability in FortiGate DHCP monitor page
An Improper Neutralization of Input vulnerability in the hostname parameter of a DHCP packet under DHCP monitor page may allow...
Nov 25, 2019 Risk IR Number: FG-IR-19-184
Use of a hard-coded cryptographic key to cipher sensitive data in configuration backup files
Use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup file may allow an attacker with...
Nov 19, 2019 Risk IR Number: FG-IR-19-007
Privilege escalation and DoS in FortiClient for Linux through local IPC socket
A privilege escalation vulnerability in FortiClient for Linux may allow a user with low privilege to run root system commands,...
Nov 15, 2019 Risk IR Number: FG-IR-19-238
FortiOS admin privilege escalation via restoring configs
A privilege escalation vulnerability in FortiOS may allow admin users to elevate their profile to super_admin, via restoring modified...
Nov 14, 2019 Risk IR Number: FG-IR-17-053
VM images lack an integrity check of the file system at boot time
VM appliance lack of root file system integrity check may allow an attacker with read/write access to the VM image (before it...
Nov 14, 2019 Risk IR Number: FG-IR-19-017