• Filter by Date
  • Filter by Risk
  • Filter by Affected Product

PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.  

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

A Cross-Site Request Forgery (CSRF) vulnerability in the user interface of FortiSIEM could allow a remote, unauthenticated attacker...

Mar 12, 2020 Risk IR Number: FG-IR-19-240
An information exposure vulnerability in FortiWeb CLI may allow an authenticated user to view sensitive information being logged...

Mar 11, 2020 Risk IR Number: FG-IR-19-269
Multiple unsafe search path vulnerabilities in FortiClient online installers may allow an attacker with control over the directory...

Mar 09, 2020 Risk IR Number: FG-IR-19-060
An improper neutralization of input vulnerability in FortiWeb may allow a remote authenticated attacker to perform a stored cross...

FortiWeb 6.2, 6.3
Mar 09, 2020 Risk IR Number: FG-IR-20-001
An unquoted service path vulnerability in the FortiClient FortiTray component may allow an attacker to gain elevated privileges...

FortiClient 6.2
Mar 09, 2020 Risk IR Number: FG-IR-19-281
Two authorization bypass through user-controlled key vulnerabilities in the FortiPresence administration interface may allow an...

Mar 09, 2020 Risk IR Number: FG-IR-19-258
An improper neutralization of input vulnerability in the URL Description of FortiIsolator may allow a remote authenticated attacker...

FortiIsolator 1.2
Mar 09, 2020 Risk IR Number: FG-IR-19-270
An improper neutralization of input vulnerability in the Anomaly Detection interface of FortiWeb may allow a remote unauthenticated...

FortiWeb
Mar 09, 2020 Risk IR Number: FG-IR-19-265