PSIRT Advisories

Monthly PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.  

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

An improper input validation in FortiAI v1.4.0 may allow an authenticated user to gain system shell access via a malicious...

May 05, 2021 Risk IR Number: FG-IR-21-033 CVE-2021-24023
A privilege escalation vulnerability in FortiNAC may allow an admin user to escalate the privileges to root by abusing the...

FortiNAC 8.7.1
May 05, 2021 Risk IR Number: FG-IR-20-038 CVE-2021-24011
An improper neutralization of input during web page generation in the SSL VPN portal of FortiProxy may allow a remote auth...

FortiProxy 2.0.0, 1.2.9, 1.2.8, 1.2.7, 1.2.6, 1.2.5, 1.2.4, 1.2.3, 1.2.2, 1.2.1, 1.2.0
May 05, 2021 Risk IR Number: FG-IR-20-226 CVE-2019-15706