PSIRT Advisories

Monthly PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.  

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

A privilege escalation vulnerability in FortiClient for Linux may allow a user with low privilege to run root system comma...

Jan 27, 2020 Risk IR Number: FG-IR-19-238 CVE-2019-15711
An Improper Neutralization of Input vulnerability in the description and title parameters of a Device Maintenance Schedule...

FortiSIEM 5.2.5
Jan 27, 2020 Risk IR Number: FG-IR-19-197 CVE-2019-17651
A hard-coded password vulnerability in the FortiSIEM database component may allow attackers to access the device database ...

FortiSIEM 5.2.5, 5.2.2, 5.2.1, 5.1.3, 5.1.2, 5.1.1, 5.1.0, 5.0.1, 5.0.0, 4.9.0, 4.7.2, 4.10.0
Jan 13, 2020 Risk IR Number: FG-IR-19-195 CVE-2019-16153
An improper neutralization of input during web page generation in FortiAuthenticator Agent for Outlook Web Access may allo...

FortiAuthenticator 6.0.0
Jan 06, 2020 Risk IR Number: FG-IR-19-104 CVE-2019-16154
Multiple vulnerabilities, referred to as Dragonblood, exist in WiFi WPA3 standard implementation .Dragonblood vulnerabilit...

Jan 03, 2020 Risk IR Number: FG-IR-19-107 CVE-2019-9494