- Filter by Date
- Filter by Severity
-
Filter by Affected Product
- All
- 6 FortiSOAR
- 0 FortiOS
- 0 FortiWeb
- 0 FortiManager
- 0 FortiAnalyzer
- 0 FortiProxy
- 0 FortiMail
- 0 FortiADC
- 0 FortiSandbox
- 0 FortiPortal
- 0 FortiClientWindows
- 0 FortiWAN
- 0 FortiAuthenticator
- 0 FortiNAC
- 0 FortiRecorder
- 0 FortiSIEM
- 0 FortiSwitch
- 0 FortiClientEMS
- 0 FortiDDoS
- 0 FortiVoiceEnterprise
- 0 FortiAP
- 0 FortiWLC
- 0 FortiAP-W2
- 0 FortiClientMac
- 0 FortiTester
- 0 FortiAP-S
- 0 FortiWLM
- 0 FortiNDR
- 0 FortiAP-U
- 0 FortiDDoS-F
- 0 FortiDeceptor
- 0 AscenLink
- 0 FortiClientLinux
- 0 FortiDB
- 0 FortiEDR
- 0 Meru AP
- 0 FortiADCManager
- 0 FortiCache
- 0 FortiDDoS-CM
- 0 FortiExtender
- 0 FortiIsolator
- 0 FortiSwitchManager
- 0 FortiAP-C
- 0 FortiClientAndroid
- 0 FortiClientiOS
- 0 FortiSIEMWindowsAgent
- 0 FortiTokenAndroid
- 0 FortiTokenIOS
- 0 FortiWAN-Manager
- 0 FSSO Windows CA
- 0 FortiAnalyzer-BigData
- 0 FortiFone
- 0 FortiOS-6K7K
- 0 FortiWebManager
- 0 Meru Controller
- 0 SSL_VPN
- 0 AV Engine
- 0 FSSO (all dist.)
- 0 FSSO Windows DC Agent
- 0 FortiCloud
- 0 FortiExplorer Windows
- 0 FortiGuard
- 0 FortiSDNConnector
- 0 FortiTokenMobileWP
- 0 FortiVoice
November
(1)
Refine Search
PSIRT Advisories
Monthly PSIRT Advisories
- 2023: Mar , Feb , Jan
- 2022: Dec , Nov , Sep , Aug , Jul , Jun , May , Apr , Mar , Feb
- 2021: Dec , Nov , Oct , Sep , Aug , Jul , Jun , May , Apr , Mar , Feb , Jan
- 2020: Dec
The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.
For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.
A missing authentication for critical function [CWE-306] vulnerabilty in FortiSOAR's Postgres database may allow a local a...
FortiSOAR
7.2.2, 7.2.1, 7.2.0, 7.0.3, 7.0.2, 7.0.1, 7.0.0, 6.4.4, 6.4.3, 6.4.1, 6.4.0
Nov 01, 2022
Severity
Medium
IR Number: FG-IR-22-216
CVE-2022-42473
An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fo...
FortiSOAR
7.2.0, 7.0.2, 7.0.1, 7.0.0, 6.4.4, 6.4.3, 6.4.1
Sep 06, 2022
Severity
Medium
IR Number: FG-IR-22-156
CVE-2022-29061
Multiple relative path traversal vulnerabilities [CWE-23] in the web API of FortiSOAR may allow an authenticated attacker ...
FortiSOAR
7.2.0, 7.0.2, 7.0.1, 7.0.0
Sep 06, 2022
Severity
Medium
IR Number: FG-IR-22-154
CVE-2022-29062
An improper privilege management vulnerability [CWE-269] in FortiSOAR may allow a GUI user who has already found a way to ...
FortiSOAR
7.2.0, 7.0.2, 7.0.1, 7.0.0, 6.4.4, 6.4.3, 6.4.1, 6.4.0
Sep 06, 2022
Severity
Medium
IR Number: FG-IR-22-152
CVE-2022-30298
An improper neutralization of special elements used in a template engine vulnerability [CWE-1336] in FortiSOAR management ...
FortiSOAR
7.2.0, 7.0.3, 7.0.2, 7.0.1, 7.0.0, 6.4.4, 6.4.3, 6.4.1, 6.4.0
Sep 06, 2022
Severity
Medium
IR Number: FG-IR-22-306
CVE-2022-35847
An improper access control vulnerability [CWE-284] in FortiSOAR may allow an unauthenticated attacker to access gateway AP...
FortiSOAR
7.0.3, 7.0.2, 7.0.1, 7.0.0, 6.4.4, 6.4.3, 6.4.1, 6.4.0
May 03, 2022
Severity
Medium
IR Number: FG-IR-22-041
CVE-2022-23443