Fortinet Products Multiple Vulnerabilities

Release Date: 11 Jun 2025

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

Multiple vulnerabilities were identified in Fortinet Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, remote code execution, sensitive information disclosure, security restriction bypass, data manipulation and spoofing on the targeted system.

Impact

Remote Code Execution
Information Disclosure
Security Restriction Bypass
Data Manipulation
Spoofing
Elevation of Privilege

System / Technologies affected

FortiOS

FortiOS 6.2 all versions
FortiOS 6.4 all versions
FortiOS 7.0 all versions
FortiOS 7.2 all versions
FortiOS 7.4.0 through 7.4.7
FortiOS 7.6.0 through 7.6.1

FortiProxy

FortiProxy 1.1 all versions
FortiProxy 1.2 all versions
FortiProxy 2.0 all versions
FortiProxy 7.0.0 through 7.0.20
FortiProxy 7.2.0 all versions
FortiProxy 7.4.0 through 7.4.8
FortiProxy 7.6.0 through 7.6.2

FortiClientWindows

FortiClientWindows 7.0 all versions
FortiClientWindows 7.2 through 7.2.6
FortiClientWindows 7.4.0

FortiClientEMS

FortiClientEMS 6.2 all versions
FortiClientEMS 6.4 all versions
FortiClientEMS 7.0 all versions
FortiClientEMS 7.2.0 through 7.2.6
FortiClientEMS 7.4.0 through 7.4.1

FortiWeb

FortiWeb 7.4.0 through 7.4.6
FortiWeb 7.6.0 through 7.6.1

FortiSASE

FortiSASE 24.4.b
FortiSASE 25.1.a.2
FortiSASE 25.1.c

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

Vulnerability Identifier

Source

Fortinet

2025年6月11日星期三