Fortinet has recently released a series of security advisories addressing multiple vulnerabilities across its products. The updates, issued on Tuesday, contain crucial fixes for FortiAuthenticator, FortiClient for Windows, FortiGate, FortiOS, and FortiSandbox, including two high-severity flaws.
Details of the Most Critical Vulnerabilities
The most significant of these vulnerabilities is identified as CVE-2025-52436, an XSS vulnerability found in FortiSandbox. This flaw poses a serious risk as it allows attackers to execute commands without needing authentication by sending specially crafted requests.
Another notable issue is CVE-2026-22153, which involves an authentication bypass in FortiOS. Under certain configurations, this vulnerability can allow unauthorized access to bypass LDAP authentication, impacting Agentless VPN or FSSO policies.
Additional Flaws and Their Impact
Alongside the high-severity issues, Fortinet has also patched medium-severity vulnerabilities in FortiOS, FortiAuthenticator, FortiGate, and FortiClient for Windows. These vulnerabilities could lead to unauthorized access to sensitive information, allow HTTP request smuggling, modification of user accounts, execution of arbitrary code, and writing of arbitrary files.
Particularly concerning is CVE-2025-68686, which relates to the exposure of sensitive information in FortiOS SSL-VPN. This bug could potentially allow attackers to circumvent previous patches designed to address symbolic link persistence vulnerabilities, thereby compromising system security.
Recent Fixes and User Recommendations
Just days before these updates, Fortinet addressed a critical SQL injection vulnerability, CVE-2026-21643, which carried a CVSS score of 9.1. This flaw in FortiClientEMS could be exploited remotely, allowing for arbitrary code execution without requiring authentication.
While Fortinet has not reported any exploitation of these vulnerabilities in real-world attacks, users are strongly advised to apply the patches immediately to safeguard their systems. For more detailed information, users can refer to Fortinet’s PSIRT advisories page.
Fortinet’s proactive measures in addressing these issues highlight the importance of staying updated with security patches to mitigate potential risks and protect digital infrastructure.
