Vulnerabilities fixed in Fortinet products

🗓️ 28 Jan 2026 15:46:10Reported by NCSCType

Fortinet fixes vulnerabilities in FortiOS, FortiProxy, FortiWeb, and FortiSwitchManager that allow unauthenticated access via crafted SAML, forged requests, and persistent sessions; disable FortiCloud single sign on.

Reporter	Title	Published	Views	Family All 80
ATTACKERKB	CVE-2025-59718	9 Dec 202517:20	–	attackerkb
ATTACKERKB	CVE-2025-62631	9 Dec 202517:18	–	attackerkb
Circl	CVE-2025-59718	9 Dec 202519:07	–	circl
Circl	CVE-2025-59719	9 Dec 202519:53	–	circl
Circl	CVE-2025-62631	9 Dec 202519:09	–	circl
Circl	CVE-2025-64447	9 Dec 202518:46	–	circl
Circl	CVE-2025-64471	9 Dec 202518:48	–	circl
CISA KEV Catalog	Fortinet Multiple Products Improper Verification of Cryptographic Signature Vulnerability	16 Dec 202500:00	–	cisa_kev
CISA	Fortinet Releases Guidance to Address Ongoing Exploitation of Authentication Bypass Vulnerability CVE-2026-24858	28 Jan 202612:00	–	cisa
CISA	CISA Adds One Known Exploited Vulnerability to Catalog	16 Dec 202512:00	–	cisa

Source	Link
arcticwolf	www.arcticwolf.com/resources/blog/arctic-wolf-observes-malicious-configuration-changes-fortinet-fortigate-devices-via-sso-accounts/
arcticwolf	www.arcticwolf.com/resources/blog/arctic-wolf-observes-malicious-sso-logins-following-disclosure-cve-2025-59718-cve-2025-59719/
fortiguard	www.fortiguard.fortinet.com/psirt/FG-IR-24-268
fortiguard	www.fortiguard.fortinet.com/psirt/FG-IR-25-411
fortiguard	www.fortiguard.fortinet.com/psirt/FG-IR-25-647
fortiguard	www.fortiguard.fortinet.com/psirt/FG-IR-25-945
fortiguard	www.fortiguard.fortinet.com/psirt/FG-IR-25-984
cert	www.cert.at/en/blog/2026/1/look-at-forticloud-sso-bypass-exploitation
fortinet	www.fortinet.com/blog/psirt-blogs/analysis-of-sso-abuse-on-fortios

28 Jan 2026 15:46Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.5 - 9.8

EPSS0.12067

SSVC