Fortinet Products Multiple Vulnerabilities

Release Date: 15 Oct 2025

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

Multiple vulnerabilities were identified in Fortinet Products. A remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting, elevation of privilege, denial of service condition, remote code execution, sensitive information disclosure and security restriction bypass on the targeted system.

Impact

Remote Code Execution
Security Restriction Bypass
Information Disclosure
Elevation of Privilege
Cross-Site Scripting
Denial of Service

System / Technologies affected

FortiOS

FortiOS 6.0 all versions
FortiOS 6.2 all versions
FortiOS 6.4 all versions
FortiOS 7.0 all versions
FortiOS 7.2 all versions
FortiOS 7.4.0 through 7.4.8
FortiOS 7.6.0 through 7.6.3

FortiPAM

FortiPAM 1.0 all versions
FortiPAM 1.1 all versions
FortiPAM 1.2 all versions
FortiPAM 1.3 all versions
FortiPAM 1.4.0 through 1.4.2
FortiPAM 1.5.0

FortiProxy

FortiProxy 1.0 all versions
FortiProxy 1.1 all versions
FortiProxy 1.2 all versions
FortiProxy 2.0 all versions
FortiProxy 7.0 all versions
FortiProxy 7.2 all versions
FortiProxy 7.4 all versions
FortiProxy 7.6.0 through 7.6.3

FortiSwitchManager

FortiSwitchManager 7.0.0 through 7.0.3
FortiSwitchManager 7.2.0 through 7.2.5

FortiMail

FortiMail 7.0 all versions
FortiMail 7.2.0 through 7.2.6
FortiMail 7.4.0 through 7.4.2

FortiManager

FortiManager 6.0 all versions
FortiManager 6.2 all versions
FortiManager 6.4 all versions
FortiManager 7.0.0 through 7.0.13
FortiManager 7.2.0 through 7.2.9
FortiManager 7.4.1 through 7.4.5
FortiManager 7.6.0 through 7.6.1

FortiManager Cloud

FortiManager Cloud 7.4.1 through 7.4.3

FortiNDR

FortiNDR 1.5 all versions
FortiNDR 7.0 all versions
FortiNDR 7.1 all versions
FortiNDR 7.2 all versions
FortiNDR 7.4.0 through 7.4.8
FortiNDR 7.6.0 through 7.6.1

FortiRecorder

FortiRecorder 7.0.0 through 7.0.4

FortiTester

FortiTester 4.2 all versions
FortiTester 7.0 all versions
FortiTester 7.1 all versions
FortiTester 7.2 all versions
FortiTester 7.3 all versions
FortiTester 7.4.0 through 7.4.2

FortiVoice

FortiVoice 6.0.7 through 6.0.12
FortiVoice 6.4.0 through 6.4.9
FortiVoice 7.0.0 through 7.0.4

FortiWeb

FortiWeb 6.4 all versions
FortiWeb 7.0 all versions
FortiWeb 7.2 all versions
FortiWeb 7.4.0 through 7.4.4
FortiWeb 7.6.0

FortiAnalyzer

FortiAnalyzer 6.0 all versions
FortiAnalyzer 6.2 all versions
FortiAnalyzer 6.4 all versions
FortiAnalyzer 7.0.0 through 7.0.13
FortiAnalyzer 7.2.0 through 7.2.8
FortiAnalyzer 7.4.0 through 7.4.5
FortiAnalyzer 7.6.0 through 7.6.2

FortiAnalyzer Cloud

FortiAnalyzer Cloud 6.4 all versions
FortiAnalyzer Cloud 7.0.1 through 7.0.13
FortiAnalyzer Cloud 7.2.1 through 7.2.8
FortiAnalyzer Cloud 7.4.1 through 7.4.5

FortiSRA

FortiSRA 1.4.0 through 1.4.2
FortiSRA Cloud 1.5.0

FortiClientMac

FortiClientMac 7.0 all versions
FortiClientMac 7.2.1 through 7.2.11
FortiClientMac 7.4.0 through 7.4.3

FortiClientWindows

FortiClientWindows 7.0 all versions
FortiClientWindows 7.2.1 through 7.2.11
FortiClientWindows 7.4.0 through 7.4.3

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

Vulnerability Identifier

Source

Fortinet

2025年10月15日星期三