PSIRT Advisories

Monthly PSIRT Advisories

2021: Sep, Aug, Jul, Jun, May, Apr, Mar, Feb, Jan
2020: Dec

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

XSS vulnerability in the Security Profiles comments section in FortiGate Cloud

An improper neutralization of input vulnerability in FortiGate Cloud may allow a remote authenticated attacker to perform ...

Feb 24, 2021 Risk

IR Number: FG-IR-20-193

XSS vulnerability in FortiWeb

An improper neutralization of input during web page generation in FortiWeb GUI interface may allow an unauthenticated, rem...

FortiWeb 6.3.7, 6.3.6, 6.3.5, 6.3.4, 6.3.3, 6.3.2, 6.3.1, 6.3.0, 6.2.3, 6.2.2, 6.2.1, 6.2.0

Feb 03, 2021 Risk

IR Number: FG-IR-20-122 CVE-2021-22122

Buffer overflow vulnerability in FortiProxy SSL VPN through a crafted POST request

A buffer overflow vulnerability in the SSL VPN portal of FortiProxy may allow an unauthenticated, remote attacker to perfo...

Feb 03, 2021 Risk

IR Number: FG-IR-20-232 CVE-2018-13381

FortiProxy SSL VPN buffer overflow when parsing javascript href content

A heap buffer overflow vulnerability in the FortiProxy SSL VPN web portal may cause the SSL VPN web service termination fo...

Feb 03, 2021 Risk

IR Number: FG-IR-20-229 CVE-2018-13383

Refine RESET

PSIRT Advisories

Monthly PSIRT Advisories

Refine
RESET