PSIRT Advisories

Monthly PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.  

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

A Host Header Redirection vulnerability exists in FortiOS SSL-VPN web portal: when an attacker submits specially crafted H...

FortiOS 6.0.4, 6.0.3, 6.0.2, 6.0.1, 6.0.0, 5.6.12, 5.6.11, 5.6.10, 5.6.9, 5.6.8, 5.6.7, 5.6.6, 5.6.5, 5.6.4, 5.6.3, 5.6.2, 5.6.1, 5.6.0, 5.4.9, 5.4.8, 5.4.7, 5.4.6, 5.4.5, 5.4.4, 5.4.3, 5.4.2, 5.4.13, 5.4.12, 5.4.11, 5.4.10, 5.4.1, 5.4.0, 5.2.9, 5.2.8, 5.2.7, 5.2.6, 5.2.5, 5.2.4, 5.2.3, 5.2.2, 5.2.14, 5.2.13, 5.2.12, 5.2.11, 5.2.10, 5.2.1, 5.2.0
Jan 03, 2020 Risk IR Number: FG-IR-19-002 CVE-2018-13384
An Improper Neutralization of Input vulnerability in the hostname parameter of a DHCP packet under DHCP monitor page may a...

FortiOS 6.2.1, 6.2.0
Nov 25, 2019 Risk IR Number: FG-IR-19-184 CVE-2019-6697
A privilege escalation vulnerability in FortiOS may allow admin users to elevate their profile to super_admin, via restori...

FortiOS 6.2.0, 6.0.7, 6.0.6, 6.0.5, 6.0.4, 6.0.3, 6.0.2, 6.0.1, 6.0.0, 5.6.9, 5.6.8, 5.6.7, 5.6.6, 5.6.5, 5.6.4, 5.6.3, 5.6.2, 5.6.10, 5.6.1, 5.6.0, 5.4.9, 5.4.8, 5.4.7, 5.4.6, 5.4.5, 5.4.4, 5.4.3, 5.4.2, 5.4.13, 5.4.12, 5.4.11, 5.4.10, 5.4.1, 5.4.0 FortiADC 5.2.2, 5.1.4
Nov 14, 2019 Risk IR Number: FG-IR-17-053 CVE-2017-17544
A clear text storage of sensitive information vulnerability in FortiClient for Mac may allow a local attacker  to read sen...

FortiClientMac 6.2.0, 6.0.7
Nov 08, 2019 Risk IR Number: FG-IR-19-227 CVE-2019-15704
New types of side channel attacks impact most processors including Intel, AMD, ARM, etc. These attacks allow malicious use...

Aug 26, 2019 Risk IR Number: FG-IR-18-002 CVE-2017-5753
The Missing Encryption Of Sensitive Data vulnerability in FortiClient may allow an attacker to access VPN session cookie f...

Apr 23, 2019 Risk IR Number: FG-IR-19-110
A cleartext transmission of sensitive information vulnerability in FortiManager may allow an unauthenticated attacker in a...

FortiManager 5.4.1, 5.4.0, 5.2.7, 5.2.6, 5.2.5, 5.2.4, 5.2.3, 5.2.2, 5.2.1, 5.2.0
Apr 23, 2019 Risk IR Number: FG-IR-18-051 CVE-2018-1360
An information exposure vulnerability in the admin portal of FortiSIEM may allow an authenticated admin to retrieve the LD...

FortiSIEM 5.1.3, 5.1.2, 5.1.1, 5.1.0, 5.0.1, 5.0.0, 4.9.0, 4.10.0
Mar 29, 2019 Risk IR Number: FG-IR-18-382 CVE-2018-13378
There is a Null pointer dereference in the NDIS Miniport drivers in FortiClient on Windows, which may be leveraged by an u...

Jan 11, 2019 Risk IR Number: FG-IR-18-092 CVE-2018-9190
On May 23, 2018, Talos disclosed in a blog post the discovery of a modular malware system they deemed "VPNFilter", affecti...

Aug 27, 2018 Risk IR Number: FG-IR-18-106
FortiCloud password reset link requested by the user takes one hour to expire even after password was changed successful...

Aug 24, 2018 Risk IR Number: FG-IR-18-074
An open redirect vulnerability exists in FortiAnalyzer and FortiManager when a user of the GUI is converting an HTML table...

Jun 22, 2018 Risk IR Number: FG-IR-18-022 CVE-2018-1355
An improper access control vulnerability exists in FortiAnalyzer and FortiManager, whereby a regular user of the GUI can e...

Jun 22, 2018 Risk IR Number: FG-IR-18-014 CVE-2018-1354
A potential Cross-site Scripting (XSS) vulnerability exists in FortiManager: Displayed data is not sanitized when an admin...

FortiManager 6.0.0, 5.6.6, 5.6.5, 5.6.4, 5.6.3, 5.6.2, 5.6.1, 5.6.0, 5.4.7, 5.4.6, 5.4.5, 5.4.4, 5.4.3, 5.4.2, 5.4.1, 5.4.0
Jun 22, 2018 Risk IR Number: FG-IR-18-006 CVE-2018-1351
On FortiAuthenticator, a HTML page is returned to the user when the CSRF validation fails on referer mismatch. This page d...

May 29, 2018 Risk IR Number: FG-IR-18-059 CVE-2018-9186