Act now! ACSC issues critical alert over pair of Fortinet vulnerabilities

The Australian cyber agency says organisations need to check their networks for several vulnerable Fortinet products.

Australian organisations need to be on the lookout for a swathe of Fortinet products that may be vulnerable to a pair of newly disclosed vulnerabilities.

The Australian Signals Directorate’s Australian Cyber Security Agency (ASD’s ACSC) recently released a critical alert regarding the vulnerabilities, CVE-2025-59718 and CVE-2025-59719.

You’re out of free articles for this month

Username or Email

Password Forgot password?

Keep me signed in on this device.

First Name

Last Name

Mobile

Organisation Type

By becoming a member, I agree to receive information and promotional messages from Cyber Daily. I can opt out of these communications at any time. For more information, please visit our Privacy Statement.

Need help signing up? Visit the Help Centre.

Both involve improper verification of cryptographic signatures, with CVE-2025-59718 impacting Fortinet FortiOS, FortiProxy, and FortiSwitchManager, and CVE-2025-59719 impacting Fortinet FortiWeb.

The two vulnerabilities could lead to an attacker bypassing FortiCloud SSO login authentication using a specially crafted SAML response message.

“Australian organisations should review their networks for use of vulnerable versions of the Fortinet products, and consult the Fortinet Advisory for mitigation advice and patching,” the ASD’s ACSC said in a 10 December advisory.

“Mitigation may include disabling FortiCloud login (if enabled) until the latest patches are applied. Organisations should also investigate for any unauthorised access or compromise of affected products.”

Fortinet had some more details in its own update regarding the vulnerabilities.

“Please note that the FortiCloud SSO login feature is not enabled in default factory settings,” Fortinet said.

VIEW ALL

“However, when an administrator registers the device to FortiCare from the device’s GUI, unless the administrator disables the toggle switch ‘Allow administrative login using FortiCloud SSO’ in the registration page, FortiCloud SSO login is enabled upon registration.

“To prevent being affected by this vulnerability on vulnerable versions, please turn off the FortiCloud login feature (if enabled) temporarily until upgrading to a non-affected version.”

The following products and versions are affected:

FortiOS

7.0.0 through 7.0.17
7.2.0 through 7.2.11
7.4.0 through 7.4.8
7.6.0 through 7.6.3

FortiProxy

7.0.0 through 7.0.21
7.2.0 through 7.2.14
7.4.0 through 7.4.10
7.6.0 through 7.6.3

FortiSwitchManager

7.0.0 through 7.0.5
7.2.0 through 7.2.6

FortiWeb

7.4.0 through 7.4.9
7.6.0 through 7.6.4
8.0.0

You can find more information on these vulnerabilities here.

David Hollingworth

David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.

Tags:

You need to be a member to post comments. Become a member for free today!

newsletter

Be the first to hear the latest developments in the cyber industry.

Act now! ACSC issues critical alert over pair of Fortinet vulnerabilities

David Hollingworth

OUR PLATFORMS AND BRANDS

EVENTS AND SUMMITS

PODCASTS

LEARNING AND EDUCATION

MOMENTUM MARKETS NETWORK

LINKS

STAY CONNECTED

FOLLOW US ON