26 May, 2020
Fortinet has released security updates to address multiple vulnerabilities in the following products:
- version 4.4
- 6.2.0 to 6.2.2
- 6.0.5 and below
- 6.0.1 and below
- FortiClient for Windows
- 6.2.1 and below
Attacker could exploit these vulnerabilities by doing the following:
- Reflected cross-site scripting (XSS) attack.
- Privilege escalation.
- Execute arbitrary code.
Best practice and Recommendations:
The CERT team encourages users to review Fortinet security advisory and apply the necessary updates: