FortiGuard: Vulnerabilities in FortiWeb (Jan. 2021)

[German]FortiGuard Labhas released a security alert covering several vulnerabilities, ranging from SQL injection to buffer ofverflow bugs. The vulnerabilities are found in FortiWeb Web Application Firewalls and are of medium severity.


FortiWeb are web application firewalls designed to provide security for business-critical applications and are backed by machine learning. There are vulnerabilities in various versions of this software that are listed in this PSIRT advisory as of January 4, 2020. I became aware of this issue via the following tweet.

Details about the respective vulnerabilities can be found in the individual advisories linked on the given FortiGuard Labs page.

This entry was posted in Security, Software and tagged , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *