top of page
perceptive_background_267k.jpg

Fortinet warns of critical FortiCloud SSO login auth bypass flaws

Published:

9 December 2025 at 18:36:48

Alert date:

9 December 2025 at 19:02:08

Source:

bleepingcomputer.com

Click to open the original link from this advisory

Fortinet has released security updates to address two critical vulnerabilities in FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager that could allow attackers to bypass FortiCloud SSO authentication. These flaws represent a significant security risk as they could enable unauthorized access to Fortinet's cloud-based single sign-on services, potentially compromising multiple connected systems and services.

Technical details

Mitigation steps:

Affected products:

FortiOS
FortiWeb
FortiProxy
FortiSwitchManager
FortiCloud SSO

Related links:

https://www.bleepingcomputer.com/news/security/fortinet-warns-of-critical-forticloud-sso-login-auth-bypass-flaws/

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page