Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Fortinet addressed security vulnerabilities across its products, most notably FortiADC, which has a high-severity command injection bug listed as CVE-2022-39947 due to incorrect input validation in the web GUI. A remotely authenticated user can send a specially crafted HTTP request to the software, allowing them to execute arbitrary OS commands on the victim system.