• Filter by Date
  • Filter by Risk
  • Filter by Affected Product

PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.  

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

The FortiAnalyzer and FortiManager WebUI accept a user-controlled input that specifies a link to an external site, and uses that...

Apr 26, 2017 Risk IR Number: FG-IR-17-014
An XSS vulnerability caused by the scrintf parameter input during Firewall Policy Creation can be exploited to load and run a...

Apr 19, 2017 Risk IR Number: FG-IR-17-017
A race condition in the tty_ioctl function in drivers/tty/tty_io.c in the Linux kernel may allow local users to obtain sensitive...

Apr 05, 2017 Risk IR Number: FG-IR-16-013
The first launch of FortiClient SSLVPN Linux creates a log file without any prior check. By previously creating a symbolic or...

Apr 05, 2017 Risk IR Number: FG-IR-16-069
ntp released an announcement on 26th April 2016, describing 4 low and 7 medium severity vulnerabilities, as listed below: CVE-2016-1551CVE-2016-1549CVE-2016-2516CVE-2016-2517CVE-2016-2518CVE-2016-2519CVE-2016-1547CVE-2016-1548CVE-2015-7704...

Apr 03, 2017 Risk IR Number: FG-IR-16-035