Header image overlay

Critical vulnerability in FortiOS and FortiProxy

Our support will regularly inform you of important events here.

A vulnerability was recently discovered in FortiOS and FortiProxy that may allow an attacker to gain unauthorised access to a firewall's management interface. Action is required!

Critical vulnerability in FortiOS and FortiProxy

A vulnerability was recently discovered in FortiOS and FortiProxy that could potentially allow an attacker to gain unauthorised access to a firewall's management interface. The problem was documented under CVE-2024-55591 by means of a CVSS score of 9.3 (Critical).

Affected products:

  • FortiOS: 7.x and earlier
  • FortiProxy: particular version (see overview)

Take action

As a patch is not yet available, Fortinet recommends a temporary measure/workaround to reduce risk.

We'll schedule a Managed Services customers need not worry, however: we have already thoroughly vetted your environment. Thanks to our standard configurations, which strictly secure access to the management interface, it is impossible to exploit this vulnerability in your systems.

Not sure if your IT environment is secure or need help with the suggested workaround? Then don't hesitate to contact us!

Can't create tickets? Ask here to get an account. If our Engineer needs to remotely control your PC, he or she will ask you to run this software .