Known vulnerabilities in Fortinet, Inc FortiWeb 7.4.8
8.0.3
7.4.11
7.6.6
7.0.12
8.0.2
7.2.12
7.4.10
8.0.1
7.6.5
8.0.0
7.4.9
7.6.4
7.4.8
7.0.11
7.2.11
7.6.3
7.4.7
7.6.2
7.4.6
7.6.1
7.4.5
7.2.10
7.4.4
7.6.0
7.2.9
7.4.3
7.2.8
7.4.2
5.9.2
7.2.7
7.4.1
7.0.10
7.2.6
7.0.9
7.2.5
7.0.8
7.4.0
7.2.4
7.2.3
6.4.3
6.3.23
6.2.8
6.1.4
7.0.7
7.2.2
6.3.22
7.2.1
7.0.6
7.0.5
7.2.0
6.3.21
7.0.4
7.0.3
7.0.2
6.3.20
7.0.1
6.3.19
6.1.3
6.0.8
6.3.18
7.0.0
6.4.2
6.3.17
6.3.16
6.2.7
6.2.6
6.2.5
6.4.1
6.3.15
6.3.14
6.4.0
6.3.13
6.3.12
6.3.11
6.3.10
6.3.8
5.5.7
5.7.3
5.8.7
6.0.7
6.0.6
6.3.9
6.3.7
6.3.6
6.3.5
6.3.4
6.3.3
6.3.2
6.3.1
6.3.0
6.2.4
6.2.3
6.2.2
6.2.1
6.2.0
6.1.2
6.1.1
6.1.0
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.9.1
5.9.0
5.8.6
5.8.5
5.8.3
5.8.2
5.6.3
5.6.2
5.6.1
5.6.0
5.5.6
5.5.5
5.5.4
5.5.3
5.5.1
5.5.0
5.4.1
5.4.0
5.3.9
5.3.8
5.3.7
5.3.6
5.3.5
5.0.1
4.4.7
4.4.6
4.4.5
4.4.4
4.4.3
4.4.2
4.4.1
4.4.0
5.8.1
5.8.0
5.7.2
5.7.1
5.7.0
5.5.2
5.3.4
5.3.2
5.2.3
5.3.0
5.2.1
5.3.3
5.2.4
5.3.1
5.2.2
5.2.0
5.0.0
5.0.4
5.1.0
5.1.3
5.1.4
5.1.1
5.1.2
5.0.2
5.0.3
Security bulletins (10)
| Secuity bulletin | Severity | Status | Published |
|---|---|---|---|
| SB2026012392: FortiCloud SSO login authentication bypass in Fortinet products | Critical | 23.01.2026 | |
| SB2025121064: FortiCloud SSO login authentication bypass in Fortinet products | Critical | 10.12.2025 | |
| SB2025120952: Authentication bypass in FortiWeb | High | 09.12.2025 | |
| SB2025120951: Use of Password Hash Instead of Password for Authentication in FortiWeb | Low | 09.12.2025 | |
| SB2025111872: OS Command Injection in FortiWeb | High | 18.11.2025 | |
| SB2025111864: Use of hard-coded redis credentials in FortiWeb | Low | 18.11.2025 | |
| SB20251114107: Unauthenticated path traversal in FortiWeb | Critical | 14.11.2025 | |
| SB2025090983: Relative path traversal in FortiWeb | Low | 09.09.2025 | |
| SB20250812107: Stack-based buffer overflow in FortiWeb | Low | 12.08.2025 | |
| SB20250812106: OS Command Injection in FortiWeb | Low | 12.08.2025 |