Filter by Date
- 2021
  - 4 02-2021
Filter by Severity
- 0 Critical
- 0 High
- 4 Medium
- 0 Low
- 0 Informational
Filter by Affected Product
- All
- 2 FortiProxy
- 1 FortiWeb
- 0 FortiOS
- 0 FortiManager
- 0 FortiAnalyzer
- 0 FortiMail
- 0 FortiADC
- 0 FortiPortal
- 0 FortiSandbox
- 0 FortiClientWindows
- 0 FortiWAN
- 0 FortiAuthenticator
- 0 FortiClientEMS
- 0 FortiSIEM
- 0 FortiWLC
- 0 FortiClientMac
- 0 FortiWLM
- 0 FortiNAC
- 0 FortiSOAR
- 0 FortiSwitch
- 0 FortiAP
- 0 FortiDDoS
- 0 FortiDeceptor
- 0 FortiRecorder
- 0 FortiTester
- 0 FortiVoiceEnterprise
- 0 FortiAP-S
- 0 FortiAP-U
- 0 FortiAP-W2
- 0 FortiClientLinux
- 0 FortiEDR
- 0 FortiDDoS-F
- 0 FortiIsolator
- 0 FortiADCManager
- 0 FortiExtender
- 0 FortiNDR
- 0 FortiSIEMWindowsAgent
- 0 AscenLink
- 0 FortiAP-C
- 0 FortiAnalyzer-BigData
- 0 FortiCache
- 0 FortiClientiOS
- 0 FortiDDoS-CM
- 0 FortiTokenAndroid
- 0 FortiWebManager
- 0 Meru AP
- 0 AV Engine
- 0 FSSO Windows CA
- 0 FSSO Windows DC Agent
- 0 FortiClientAndroid
- 0 FortiCloud
- 0 FortiDB
- 0 FortiFone
- 0 FortiGuard
- 0 FortiOS-6K7K
- 0 FortiSDNConnector
- 0 FortiSwitchManager
- 0 FortiTokenIOS
- 0 FortiTokenMobileWP
- 0 FortiWAN-Manager
- 0 Meru Controller

Refine Search

PSIRT Advisories

Monthly PSIRT Advisories

2022: Dec , Nov , Sep , Aug , Jul , Jun , May , Apr , Mar , Feb
2021: Dec , Nov , Oct , Sep , Aug , Jul , Jun , May , Apr , Mar , Feb , Jan
2020: Dec

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

XSS vulnerability in the Security Profiles comments section in FortiGate Cloud

An improper neutralization of input vulnerability in FortiGate Cloud may allow a remote authenticated attacker to perform ...

Feb 24, 2021 Severity light-circle-logo

Medium IR Number: FG-IR-20-193

XSS vulnerability in FortiWeb

An improper neutralization of input during web page generation in FortiWeb GUI interface may allow an unauthenticated, rem...

FortiWeb 6.3.9, 6.3.8, 6.3.7, 6.3.6, 6.3.5, 6.3.4, 6.3.3, 6.3.2, 6.3.13, 6.3.12, 6.3.11, 6.3.10, 6.3.1, 6.3.0, 6.2.4, 6.2.3, 6.2.2, 6.2.1, 6.2.0

Feb 03, 2021 Severity light-circle-logo

Medium IR Number: FG-IR-20-122 CVE-2021-22122

Buffer overflow vulnerability in FortiProxy SSL VPN through a crafted POST request

A buffer overflow vulnerability in the SSL VPN portal of FortiProxy may allow an unauthenticated, remote attacker to perfo...

FortiProxy 2.0.0, 1.2.8, 1.2.7, 1.2.6, 1.2.5, 1.2.4, 1.2.3, 1.2.2, 1.2.1, 1.2.0, 1.1.6

Feb 03, 2021 Severity light-circle-logo

Medium IR Number: FG-IR-20-232 CVE-2018-13381

FortiProxy SSL VPN buffer overflow when parsing javascript href content

A heap buffer overflow vulnerability in the FortiProxy SSL VPN web portal may cause the SSL VPN web service termination fo...

FortiProxy 2.0.0, 1.2.8, 1.2.7, 1.2.6, 1.2.5, 1.2.4, 1.2.3, 1.2.2, 1.2.1, 1.2.0, 1.1.6

Feb 03, 2021 Severity light-circle-logo

Medium IR Number: FG-IR-20-229 CVE-2018-13383

Network

Files and Endpoint

Application

Additional SOC Services

Refine
RESET

PSIRT Advisories

Monthly PSIRT Advisories

News / Research

Network

Files and Endpoint

Application

Additional SOC Services

FortiGate

FortiDeceptor

FortiClient

FortiMail

FortiEDR

FortiADC

FortiAnalyzer/FortiSIEM

FortiCWP

FortiWeb

FortiNDR

FortiSandbox

FortiTester

Threat Lookup

PSIRT

Resources

Refine RESET

PSIRT Advisories

Monthly PSIRT Advisories

Refine
RESET