Cert-In-Advisories

[CIAD-2025-0050] Multiple Vulnerabilities in Fortinet Products

By Published On: December 12, 2025

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256
Multiple Vulnerabilities in Fortinet Products 
Indian – Computer Emergency Response Team (https://www.cert-in.org.in)
Severity Rating: High
Software Affected
FortiOS
FortiProxy
FortiSwitchManager
FortiAnalyzer
FortiManager
FortiPAM
FortiPortal
FortiWeb
FortiAuthenticator
Associated components such as the FortiOS IPS engine
For the complete list of affected versions, refer to Fortinet’s official PSIRT page.
https://fortiguard.fortinet.com/psirt
Overview
Multiple vulnerabilities have been reported in Fortinet products, which could be exploited by an attacker to gain escalated privileges, bypass security restrictions, execute arbitrary code and obtain sensitive information on the target system.
Target Audience:
All end-user organizations and individuals using Fortinet products.
Risk Assessment:
High risk of unauthorized access, data breaches, full system compromise.
Impact Assessment:
Potential for unauthorized access to sensitive user information.
Description
Fortinet provides cyber security solutions such as firewalls, endpoint security solutions, intrusion detection systems.
Multiple vulnerabilities exist in Fortinet products which could be exploited by an attacker to gain escalated privileges, bypass security restrictions, execute arbitrary code and obtain sensitive information.
Solution
Apply appropriate updates as mentioned in:  
https://fortiguard.fortinet.com/psirt/FG-IR-24-133
https://fortiguard.fortinet.com/psirt/FG-IR-24-268
https://fortiguard.fortinet.com/psirt/FG-IR-25-411
https://fortiguard.fortinet.com/psirt/FG-IR-25-554
https://fortiguard.fortinet.com/psirt/FG-IR-25-616
https://fortiguard.fortinet.com/psirt/FG-IR-25-647
https://fortiguard.fortinet.com/psirt/FG-IR-25-945
https://fortiguard.fortinet.com/psirt/FG-IR-25-984
Vendor Information
Fortinet
https://fortiguard.fortinet.com/psirt
CVE Name
CVE-2024-40593
CVE-2024-47570
CVE-2025-57823
CVE-2025-59718
CVE-2025-59719
CVE-2025-59923
CVE-2025-62631
CVE-2025-64447
– —
Thanks and Regards,
CERT-In
Incident Response Help Desk
e-mail: incident@cert-in.org.in
Phone: +91-11-22902657
Toll Free Number: 1800-11-4949
Toll Free Fax : 1800-11-6969
Web: http://www.cert-in.org.in
PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4
PGP Key information:
https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS
Postal address:
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003
—–BEGIN PGP SIGNATURE—–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=9cbM
—–END PGP SIGNATURE—–

Share this article

Related Posts

[CIAD-2025-0051] Multiple vulnerabilities in SAP Products

[CIAD-2025-0051] Multiple vulnerabilities in SAP Products

December 12, 2025
[CIVN-2025-0359] Multiple Vulnerabilities in Drupal Products

[CIVN-2025-0359] Multiple Vulnerabilities in Drupal Products

December 12, 2025
[CIVN-2025-0358] Multiple Vulnerabilities in Zoom

[CIVN-2025-0358] Multiple Vulnerabilities in Zoom

December 12, 2025
Total Views: 11|Daily Views: 11
Follow us :

Categories

Archives

Join our team

Join us today latest article updates!