Fortinet Products Multiple Vulnerabilities

Release Date: 9 Apr 2025

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

Multiple vulnerabilities were identified in Fortinet Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, remote code execution, sensitive information disclosure, security restriction bypass, data manipulation, denial of service and spoofing on the targeted system.

 

---

Impact

• Remote Code Execution
• Information Disclosure
• Security Restriction Bypass
• Data Manipulation
• Spoofing
• Denial of Service
• Elevation of Privilege

---

System / Technologies affected

For affected products, please refer to the link below:

 

• https://fortiguard.fortinet.com/psirt/FG-IR-23-165
• https://fortiguard.fortinet.com/psirt/FG-IR-24-392
• https://fortiguard.fortinet.com/psirt/FG-IR-24-435
• https://fortiguard.fortinet.com/psirt/FG-IR-24-046
• https://fortiguard.fortinet.com/psirt/FG-IR-24-397
• https://fortiguard.fortinet.com/psirt/FG-IR-24-453
• https://fortiguard.fortinet.com/psirt/FG-IR-24-111
• https://fortiguard.fortinet.com/psirt/FG-IR-24-184
• https://fortiguard.fortinet.com/psirt/FG-IR-23-344
• https://fortiguard.fortinet.com/psirt/FG-IR-24-474

 

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://fortiguard.fortinet.com/psirt/FG-IR-23-165
• https://fortiguard.fortinet.com/psirt/FG-IR-24-392
• https://fortiguard.fortinet.com/psirt/FG-IR-24-435
• https://fortiguard.fortinet.com/psirt/FG-IR-24-046
• https://fortiguard.fortinet.com/psirt/FG-IR-24-397
• https://fortiguard.fortinet.com/psirt/FG-IR-24-453
• https://fortiguard.fortinet.com/psirt/FG-IR-24-111
• https://fortiguard.fortinet.com/psirt/FG-IR-24-184
• https://fortiguard.fortinet.com/psirt/FG-IR-23-344
• https://fortiguard.fortinet.com/psirt/FG-IR-24-474

---

Vulnerability Identifier

• CVE-2023-37930
• CVE-2024-26013
• CVE-2024-32122
• CVE-2024-46671
• CVE-2024-48887
• CVE-2024-50565
• CVE-2024-52962
• CVE-2024-54024
• CVE-2024-54025
• CVE-2025-22855
• CVE-2025-25254

---

Source

• Fortinet

---

Related Link

• https://fortiguard.fortinet.com/psirt/FG-IR-23-165
• https://fortiguard.fortinet.com/psirt/FG-IR-24-392
• https://fortiguard.fortinet.com/psirt/FG-IR-24-435
• https://fortiguard.fortinet.com/psirt/FG-IR-24-046
• https://fortiguard.fortinet.com/psirt/FG-IR-24-397
• https://fortiguard.fortinet.com/psirt/FG-IR-24-453
• https://fortiguard.fortinet.com/psirt/FG-IR-24-111
• https://fortiguard.fortinet.com/psirt/FG-IR-24-184
• https://fortiguard.fortinet.com/psirt/FG-IR-23-344
• https://fortiguard.fortinet.com/psirt/FG-IR-24-474