Fortinet Updates | Security Alerts

The official site for Saudi CERT Sign In | العربية |

| A+ A-

Your review has been sent successfully

Fortinet Updates

2534

Classification

Security Alert

● Critical

● High

● Medium

● Low

Warning Date

Severity Level

Warning Number

Target Sector

29 December, 2021

● High

2021-4146

All

Description:

Fortinet has released security updates to address multiple vulnerabilities in the following products:

FortiSandbox 3.2.1 and below.
FortiSandbox 3.1.4 and below.
FortiSandbox 3.0.6 and below.
FortiAuthenticator 6.0.5 and below.
FortiAuthenticator 5.5.0 and below.
FortiAuthenticator 5.4.1 and below.
FortiAuthenticator 5.3.1 and below.
FortiAuthenticator 5.2.2 and below.
FortiAuthenticator 5.1.2 and below.
FortiAuthenticator 5.0.0 and below.
FortiAuthenticator 4.3.4 and below.
FortiManager versions 5.6.10 and below.
FortiManager versions 6.0.10 and below.
FortiManager versions 6.2.7 and below.
FortiManager versions 6.4.5 and below.
FortiManager version 7.0.0.
FortiManager versions 5.4.x.
FortiAnalyzer versions 5.6.10 and below.
FortiAnalyzer versions 6.0.10 and below.
FortiAnalyzer versions 6.2.7 and below.
FortiAnalyzer versions 6.4.5 and below.
FortiAnalyzer version 7.0.0.
FortiSandbox 3.2.2 and below.
FortiManager versions 5.6.x, 6.2.x and 6.0.x are also impacted.
FortiAnalyzer versions 5.6.x, 6.2.x and 6.0.x also are impacted.
FortiPortal version 5.2.5 and below.
FortiPortal version 5.3.5 and below.

Threats:

An attacker could exploit these vulnerabilities by doing the following:

Buffer overflow

Best practice and Recommendations:

The CERT team encourages users to review Fortinet security advisory and apply the necessary updates:

Last updated at 29 December, 2021