Known vulnerabilities in Fortinet, Inc FortiOS 7.6.3

Known vulnerabilities in Fortinet, Inc FortiOS 7.6.3

Vendor: Fortinet, Inc

Website: https://www.fortinet.com/

Total Security Bulletins: 17

Security bulletins (17)

Secuity bulletin	Severity	Status	Published
SB2026021046: Format String error in FortiOS CAPWAP fast-failover mode	Low	Patched	10.02.2026
SB2026021044: Firewall policy bypass in FortiOS FSSO Terminal Services Agent	Low	Patched	10.02.2026
SB2026021041: LDAP authentication bypass in FortiOS	High	Patched	10.02.2026
SB2026012392: FortiCloud SSO login authentication bypass in Fortinet products	Critical	Patched Exploited	23.01.2026
SB2026011365: Remote code execution in FortiOS and FortiSwitchManager cw_acd daemo	Critical	Patched	13.01.2026
SB2025121064: FortiCloud SSO login authentication bypass in Fortinet products	Critical	Patched Exploited	10.12.2025
SB2025111874: Stack buffer overflow in FortiOS CAPWAP daemon	Medium	Patched	18.11.2025
SB2025111873: Improper privilege management in Fortinet products	Low	Patched	18.11.2025
SB2025111871: Buffer underflow in FortiOS	Low	Patched	18.11.2025
SB2025102162: Multiple vulnerabilities in Fortinet FortiOS, FortiProxy and FortiSASE	Low	Patched	21.10.2025
SB2025101567: Unchecked Return Value in FortiOS	Low	Patched	15.10.2025
SB2025101505: Inclusion of Sensitive Information in Log Files in FortiOS and FortiProxy	Low	Patched	15.10.2025
SB20251014105: Improperly implemented security check for standard in FortiOS and FortiProxy	Low	Patched	14.10.2025
SB2025061115: Authentication bypass using an alternate path or channel in FortiOS and FortiProxy	Low	Patched	11.06.2025
SB2025061112: Improper restriction of communication channel to intended endpoints in FortiOS	Low	Patched	11.06.2025
SB2025061107: Incomplete cleanup in FortiOS and FortiProxy	Low	Patched	11.06.2025
SB2025061106: Information disclosure in FortiOS	Low	Patched	11.06.2025