PSIRT Advisories

Monthly PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.  

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

FortiGate may fail to record traffic destined to Fortinet owned IP addresses i.e. traffic destined to the following subnet...

Sep 24, 2020 Risk IR Number: FG-IR-20-033
An information exposure vulnerability in FortiOS WEB UI may allow an unauthenticated attacker to gain platform information...

Jun 01, 2020 Risk IR Number: FG-IR-18-173
FortiOS by default enables TCP timestamp response, which may lead to information disclosure.The TCP timestamp response can...

Jul 24, 2019 Risk IR Number: FG-IR-16-090
An uninitialized memory buffer leak exists in FortiOS web proxy's disclaimer response web pages, potentially causing sensi...

Nov 22, 2018 Risk IR Number: FG-IR-18-325
Fortigate PPTP service reveals serial number of FortiGate in the hostname field defined in connection control setup packet...

Nov 16, 2018 Risk IR Number: FG-IR-18-101
A standard user with adom assignment can read the interface settings of vdoms unrelated to his/her adom.

Aug 27, 2018 Risk IR Number: FG-IR-18-016
The default replacement message in FortiOS' Application control block page reveals the private IP as well as the hostname ...

Aug 23, 2018 Risk IR Number: FG-IR-18-085
A SSL VPN user logged in via the web portal can access internal FortiOS configuration information (eg: addresses) via spec...

May 18, 2018 Risk IR Number: FG-IR-17-231
The FortiOS IKE packets which include the Vendor ID embed the FortiOS build version number.

Aug 11, 2017 Risk IR Number: FG-IR-17-073
The HTML source code of the FortiWeb SNMPv3 user edit webui page includes the user's password in cleartext.

Aug 11, 2017 Risk IR Number: FG-IR-17-162
The SSL-VPN feature of FortiOS 4.3.12 and lower only checks the first byte of the TLS MAC in the finished message. An atta...

Jul 15, 2015 Risk IR Number: FG-IR-15-016