PSIRT Advisories
The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.
For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.
The first run of the FortiClient SSLVPN script results in the subproc file becoming suid & root owned binary. The issue lays...
The first launch of FortiClient SSLVPN Linux creates a log file without any prior check. By previously creating a symbolic or...
Of multiple vulnerabilities released affecting Linux kernels through 4.6.3, FortiOS was found vulnerable to the following two:CVE-2016-3713CVE-2016-5829
An unauthenticated XSS vulnerability could allow an attacker to execute arbitrary scripts in the security context of the browser...
net/ipv4/tcp_input.c in certain Linux kernel versions does not properly determine the rate of challenge ACK segments, which makes...
The OpenSSL project released an advisory on Sept 22nd, 2016, describing 1 High, 1 Medium and 12 Low severity vulnerabilities,...
ntp released an announcement on 26th April 2016, describing 4 low and 7 medium severity vulnerabilities, as listed below: CVE-2016-1551CVE-2016-1549CVE-2016-2516CVE-2016-2517CVE-2016-2518CVE-2016-2519CVE-2016-1547CVE-2016-1548CVE-2015-7704...
A webui administrator may create a new theme that performs arbitrary code execution on the system.
FortiManager does not properly validate TLS certificates when probing for devices to administer. This leads to potential pre-shared...
A read-only administrator may have access to read-write administrators password hashes (not including super-admins) stored on...
A FortiGate configured to use flow-based protection will stop monitoring network sessions that are active when a scanning engine...
When devices use ANSI X9.31 RNG (which was removed from the list of FIPS-approved random number generation algorithms in January...
BlackNurse is a Denial of Service attack consisting in flooding the target with ICMP Type 3 Code 3 packets. The latter type of...
The following products are confirmed to be not affected:FortiGate FortiAnalyzerFortiSwitchFortiAP For questions about other Fortinet...
FortiWLC comes with a hardcoded account named 'core' which is used by Meru Access Points to send core dumps to the FortiWLC and...