Header image overlay

CVE Fortinet: Vulnerability found in FortiManager

Our support will regularly inform you of important events here.

A critical vulnerability (CVE) has been discovered in FortiManager. We would like to explain the nature of this problem and share practical information on how to prevent hackers from gaining unauthorised access to your systems.

CVE Fortinet: Vulnerability found in FortiManager

A critical vulnerability has been discovered in FortiManager, Fortinet's central management platform used to manage the configuration, security policies and updates of Fortinet devices (e.g. FortiGate firewalls). This CVE could allow attackers to gain unauthorised access to sensitive systems if not patched.

Take action

What should you do?

  • This vulnerability was patched with subsequent versions:
    Version Affected Solution
    FortiOS 7.4 7.4.0 to 7.4.1 Upgrade to 7.4.2 or higher
    FortiOS 7.2 7.2.0 to 7.2.7 Upgrade to 7.2.8 or higher
    FortiOS 7.0 7.0 all versions Migrate to a version that has been patched
    FortiOS 6.4 6.4 all versions Migrate to a version that has been patched
  • If this is not a possibility for the time being, temporarily turning off your FortiManager is an alternative security measure. This has no impact on the operation of e.g. your firewalls.

What does VanRoey do?

  • Our Managed Services customers can rest assured that we are in the process of applying the above patches or have already done so.

Are you not a Managed Services customer and need support to fix this important vulnerability? Please do not hesitate to contact our Support Service.

Can't create tickets? Ask here to get an account. If our Engineer needs to remotely control your PC, he or she will ask you to run this software .