PSIRT Advisories

Monthly PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.  

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

An improper neutralization of input vulnerability in the FortiGateCloud login page may allow a remote unauthenticated atta...

FortiCloud 4.4
May 25, 2020 Risk IR Number: FG-IR-19-306
An Insecure Temporary File (CWE-377) vulnerability in FortiClient for Windows may allow a local user to gain elevated priv...

FortiClient 6.2, 6.0
May 25, 2020 Risk IR Number: FG-IR-20-040
An improper input validation (CWE-20) vulnerability in FortiAP CLI admin console may allow unauthorized administrators to ...

FortiAP 5.6, 6.0, 6.2
May 25, 2020 Risk IR Number: FG-IR-19-298
TCP stacks that lack RFC 5961 3.2 & 4.2 support (or have it disabled at application level) may allow remote attackers to g...

FortiAnalyzer 6.2, 6.0 FortiManager 6.2, 6.0
May 20, 2020 Risk IR Number: FG-IR-16-039