• Filter by Date
  • Filter by Risk
  • Filter by Affected Product

PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.  

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

An uninitialized memory buffer leak exists in FortiOS web proxy's disclaimer response web pages, potentially causing sensitive...

Nov 22, 2018 Risk IR Number: FG-IR-18-325
libssh versions 0.6 and above have an authentication bypass vulnerability inthe server code. By presenting the server an SSH2_MSG_USERAUTH_SUCCESS...

Nov 21, 2018 Risk IR Number: FG-IR-18-336
An attacker could send DHCP request containing malicious scripts in the HOSTNAME parameter. The malicious script code is executed...

Nov 16, 2018 Risk IR Number: FG-IR-18-121
Fortigate PPTP service reveals serial number of FortiGate in the hostname field defined in connection control setup packets of...

Nov 16, 2018 Risk IR Number: FG-IR-18-101
Fortigate's read-only admins are able to point a LDAP server connectivity test request to a rogue LDAP server instead of the configured...

Nov 16, 2018 Risk IR Number: FG-IR-18-157