PSIRT Advisories

The FortiGuard Labs Product Security Incident Response Team (PSIRT) continually test Fortinet hardware and software products, looking for vulnerabilities and weaknesses. Any such findings are fed back to Fortinet's development teams and serious issues are described along with protective solutions in the advisories below.

An improper input validation vulnerability in FortiOS admin webUI may allow an attacker to perform an URL redirect attack via...

FortiOS 5.4, 5.6, 6.0, 6.2
Feb 18, 2020 Risk IR Number: FG-IR-19-179
An Insufficient Verification of Data Authenticity vulnerability in FortiManager may allow an unauthenticated attacker to perform...

FortiManager 5.6, 6.0, 6.2
Feb 13, 2020 Risk IR Number: FG-IR-19-191
FortiGate models which do not contain and embedded TRNG may suffer from insufficient entropy ("seed") in the CTR DRBG random data...

Feb 13, 2020 Risk IR Number: FG-IR-19-186
A system command injection vulnerability in the FortiAP CLI admin console may allow unauthorized administrators to run arbitrary...

FortiAP 5.6, 6.0, 6.2
Feb 10, 2020 Risk IR Number: FG-IR-19-209
An improper input validation (CWE-20) vulnerability in FortiAP-S/W2 CLI admin console may allow unauthorized administrators to...

FortiAP 5.6, 6.0, 6.2
Feb 10, 2020 Risk IR Number: FG-IR-19-298
An Uncontrolled Resource Consumption vulnerability in multiple products may allow an attacker to cause web service portal denial...

FortiAnalyzer 5.6, 6.0, 6.2 FortiAP 6.0, 6.2 FortiManager 5.6, 6.0, 6.2 FortiOS 6.0, 6.2 FortiSwitch 6.0, 6.2
Feb 03, 2020 Risk IR Number: FG-IR-19-013
A cleartext storage in a file or on disk (CWE-313) vulnerability in FortiOS SSL VPN may allow an attacker to retrieve a logged-in...

FortiGate 5.4, 5.6, 6.0, 6.2
Jan 27, 2020 Risk IR Number: FG-IR-19-217
A privilege escalation vulnerability in FortiClient for Linux may allow a user with low privilege to run root system commands,...

Jan 27, 2020 Risk IR Number: FG-IR-19-238
Makers of popular WiFi hacking tool hashcat have discovered a way to improve password brute-forcing of the WPA/WPA2 wifi network...

Jan 27, 2020 Risk IR Number: FG-IR-18-199
An Improper Neutralization of Input vulnerability in the description and title parameters of a Device Maintenance Schedule in...

Jan 27, 2020 Risk IR Number: FG-IR-19-197
A use of hard-coded cryptographic key vulnerability in FortiSIEM may allow a remote unauthenticated attacker to obtain SSH access...

Jan 15, 2020 Risk IR Number: FG-IR-19-296
A hard-coded password vulnerability in the FortiSIEM database component may allow attackers to access the device database via...

FortiSIEM 5.0, 5.1, 5.2
Jan 13, 2020 Risk IR Number: FG-IR-19-195
Multiple vulnerabilities, referred to as Dragonblood, exist in WiFi WPA3 standard implementation .Dragonblood vulnerabilities...

Jan 03, 2020 Risk IR Number: FG-IR-19-107
Two improper access control vulnerabilities in FortiMail admin webUI may allow administrators to perform privileged functions...

Jan 03, 2020 Risk IR Number: FG-IR-19-237
A Host Header Redirection vulnerability exists in FortiOS SSL-VPN web portal: when an attacker submits specially crafted HTTP...

FortiGate 5.4, 5.6, 6.0
Jan 03, 2020 Risk IR Number: FG-IR-19-002