FortiMail versions 6.0.9 and below.
FortiMail versions 6.2.4 and below
FortiMail versions 6.4.1 and below.
Please upgrade to FortiMail versions 6.0.10 or above.
Please upgrade to FortiMail versions 6.2.5 or above.
Please upgrade to FortiMail versions 6.4.2 or above.
Fortinet is pleased to thank Patrick Schmid from Redguard for reporting this vulnerability under responsible disclosure.