Fortinet releases security updates for several products
Vulnerabilities have been discovered in a number of Fortinet products. A malicious user could exploit these vulnerabilities (CVE-2025-68686, CVE-2026-25689, CVE-2026-22629, CVE-2026-24017, CVE-2026-22627, CVE-2025-54820, CVE-2025-68648, CVE-2025-55717, CVE-2025-68482, CVE-2026-24018, CVE-2026-22572, CVE-2026-24641, CVE-2025-66178, CVE-2026-25836, CVE-2025-54659, CVE-2025-48418, CVE-2025-48840, CVE-2026-25972, CVE-2025-49784, CVE-2026-30897, CVE-2026-24640, CVE-2025-53608, CVE-2026-22628) to trigger remote code execution, elevation of privilege, sensitive information disclosure, security restrictions bypass and denial of service on the targeted system. These vulnerabilities affect FortiOS, FortiDeceptor, FortiAnalyzer, FortiAnalyzer Cloud, FortiManager, FortiManager Cloud, FortiWeb, FortiSwitchAXFixed, FortiMail, FortiVoice, FortiRecorder, FortiClientLinux, FortiSandbox Cloud, FortiSOAR Agent Communication Bridge, FortiSIEM, FortiAnalyzer-BigData products.
More information on vulnerabilities and updates is available in Fortinet security advisories – fortinet.com.
16 March 2026