Filter by Date
- 2023
  - 5 01-2023
- 2022
  - 7 12-2022
  - 16 11-2022
  - 9 10-2022
  - 12 09-2022
  - 3 08-2022
  - 11 07-2022
  - 7 06-2022
  - 9 05-2022
  - 15 04-2022
  - 11 03-2022
  - 7 02-2022
- 2021
  - 41 12-2021
  - 21 11-2021
  - 7 10-2021
  - 12 09-2021
  - 21 08-2021
  - 18 07-2021
  - 16 06-2021
  - 3 05-2021
  - 4 04-2021
  - 4 03-2021
  - 4 02-2021
  - 8 01-2021
- 2020
  - 3 12-2020
  - 1 11-2020
  - 4 10-2020
  - 8 09-2020
  - 2 07-2020
  - 11 06-2020
  - 4 05-2020
  - 4 04-2020
  - 10 03-2020
  - 6 02-2020
  - 9 01-2020
- 2019
  - 1 12-2019
  - 11 11-2019
  - 4 10-2019
  - 3 09-2019
  - 5 08-2019
  - 6 07-2019
  - 2 06-2019
  - 4 05-2019
  - 7 04-2019
  - 1 03-2019
  - 1 02-2019
  - 2 01-2019
- 2018
  - 1 12-2018
  - 4 11-2018
  - 8 08-2018
  - 2 07-2018
  - 5 06-2018
  - 5 05-2018
  - 3 04-2018
  - 1 03-2018
  - 2 01-2018
- 2017
  - 3 12-2017
  - 6 11-2017
  - 8 10-2017
  - 1 09-2017
  - 2 08-2017
  - 2 07-2017
  - 2 06-2017
  - 2 05-2017
  - 12 04-2017
  - 2 02-2017
- 2016
  - 1 12-2016
  - 5 11-2016
  - 1 10-2016
  - 6 09-2016
  - 6 08-2016
  - 3 07-2016
  - 1 06-2016
  - 2 05-2016
  - 1 04-2016
  - 2 03-2016
  - 1 02-2016
  - 1 01-2016
- 2015
  - 2 12-2015
  - 2 09-2015
  - 6 07-2015
  - 1 06-2015
  - 2 05-2015
  - 3 04-2015
  - 2 03-2015
  - 5 02-2015
  - 1 01-2015
- 2014
  - 1 12-2014
  - 3 10-2014
  - 1 09-2014
  - 1 08-2014
  - 1 07-2014
  - 1 06-2014
  - 1 05-2014
  - 3 04-2014
  - 3 02-2014
  - 1 01-2014
- 2013
  - 1 12-2013
  - 1 11-2013
  - 1 07-2013
  - 1 06-2013
  - 1 05-2013
  - 1 01-2013
- 2012
  - 2 12-2012
  - 2 10-2012
  - 1 09-2012
  - 1 08-2012
  - 1 05-2012
  - 1 02-2012
Filter by Severity
- 31 Critical
- 124 High
- 283 Medium
- 86 Low
- 11 Informational
Filter by Affected Product
- All
- 114 FortiOS
- 48 FortiManager
- 47 FortiWeb
- 41 FortiAnalyzer
- 33 FortiProxy
- 30 FortiMail
- 25 FortiADC
- 24 FortiSandbox
- 21 FortiPortal
- 20 FortiClientWindows
- 18 FortiWAN
- 15 FortiAuthenticator
- 14 FortiClientEMS
- 13 FortiSIEM
- 12 FortiSwitch
- 12 FortiWLC
- 11 FortiAP
- 11 FortiClientMac
- 10 FortiAP-W2
- 10 FortiDDoS
- 10 FortiRecorder
- 10 FortiTester
- 10 FortiVoiceEnterprise
- 9 FortiAP-S
- 9 FortiWLM
- 8 FortiNAC
- 8 FortiSOAR
- 6 FortiAP-U
- 6 FortiDB
- 6 FortiDeceptor
- 5 AscenLink
- 5 FortiClientLinux
- 5 FortiEDR
- 5 Meru AP
- 4 FortiADCManager
- 4 FortiCache
- 4 FortiDDoS-F
- 4 FortiIsolator
- 4 FortiNDR
- 3 FortiAP-C
- 3 FortiClientAndroid
- 3 FortiClientiOS
- 3 FortiDDoS-CM
- 3 FortiExtender
- 3 FortiSIEMWindowsAgent
- 3 FortiTokenAndroid
- 3 FortiTokenIOS
- 2 FSSO Windows CA
- 2 FortiAnalyzer-BigData
- 2 FortiWAN-Manager
- 2 FortiWebManager
- 2 Meru Controller
- 2 SSL_VPN
- 1 AV Engine
- 1 FSSO (all dist.)
- 1 FSSO Windows DC Agent
- 1 FortiCloud
- 1 FortiExplorer Windows
- 1 FortiFone
- 1 FortiGuard
- 1 FortiOS-6K7K
- 1 FortiSDNConnector
- 1 FortiSwitchManager
- 1 FortiTokenMobileWP
- 1 FortiVoice

Refine Search

PSIRT Advisories

Monthly PSIRT Advisories

2023: Jan
2022: Dec , Nov , Sep , Aug , Jul , Jun , May , Apr , Mar , Feb
2021: Dec , Nov , Oct , Sep , Aug , Jul , Jun , May , Apr , Mar , Feb , Jan
2020: Dec

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

Potential Man-In-The Middle Vulnerability in FortiClient VPN

Under certain conditions, FortiClient VPN may be susceptible to a certificate validation vulnerability which would allow a...

May 13, 2013 Severity black-background-circle-icon

Critical IR Number: FG-IR-13-008

Potential Web Vulnerabilities in FortiMail

Input filter bypass and exception handling vulnerabilities can be used by an attacker to hijack administrator or customer ...

Jan 29, 2013 Severity black-background-circle-icon

Medium IR Number: FG-IR-013-001 CVE-2013-1471

Potential Cross Site Scripting Vulnerability in FortiDB

FortiDB does not sanitize user input properly under limited circumstances. The vulnerability could allow an attacker to i...

Dec 03, 2012 Severity black-background-circle-icon

Low IR Number: FG-IR-012-007 CVE-2012-6347

Potential Cross Site Scripting Vulnerability in FortiWeb

FortiWeb does not sanitize user input properly under limited circumstances. The vulnerability could allow an attacker to ...

Dec 03, 2012 Severity black-background-circle-icon

Low IR Number: FG-IR-012-008 CVE-2012-6346

Cross Site Scripting Vulnerability in FortiWeb

FortiWeb fails to sanitize user input. The vulnerability allows an attacker to inject script code.

Oct 25, 2012 Severity black-background-circle-icon

Low IR Number: FG-IR-012-006

Script Code Injection Vulnerability in FortiMail

FortiMail fails to sanitize user input. The vulnerability allows an attacker to bypass its input filtering routine, which ...

Oct 25, 2012 Severity black-background-circle-icon

Medium IR Number: FG-IR-012-005

Potential Cross-Site Vulnerabilities in FortiGate

Vulnerability-lab.com publicly released news of discovered vulnerabilities discovered in FortiGate UTM WAF Appliances platforms.

Sep 14, 2012 Severity black-background-circle-icon

Low IR Number: FG-IR-012-004

Potential Buffer Overflow During HTTP Session Authentication

Fortinet has verified a potential issue during HTTP session authentication that could lead to a buffer overflow condition ...

Aug 20, 2012 Severity black-background-circle-icon

Medium IR Number: FG-IR-012-003

Potential Policy Bypass in FortiWeb Web Application Firewall

On May 2, 2012 a policy bypass vulnerability was publicly disclosed against Fortinet's FortiWeb Web Application Firewall. ...

May 04, 2012 Severity black-background-circle-icon

Low IR Number: FG-IR-012-002

Potential Information Disclosure Vulnerability in FortiGate

On January 27, 2012, vulnerability-lab.com publicly released news of discovered vulnerabilities discovered in FortiGate UT...

Feb 01, 2012 Severity black-background-circle-icon

Low IR Number: FG-IR-012-001 CVE-2012-0941

Network

Files and Endpoint

Application

Additional SOC Services

Refine

PSIRT Advisories

Monthly PSIRT Advisories

News / Research

Network

Files and Endpoint

Application

Additional SOC Services

FortiGate

FortiDeceptor

FortiClient

FortiMail

FortiEDR

FortiADC

FortiAnalyzer

FortiCWP

FortiWeb

FortiNDR

FortiSandBox

FortiTester

Threat Lookup

PSIRT

Resources

Refine

PSIRT Advisories

Monthly PSIRT Advisories