Fortinet releases security updates for several products
Fortinet has released updates to fix multiple vulnerabilities in its products. A malicious user could exploit these vulnerabilities (CVE-2026-25088, CVE-2025-53681, CVE-2025-53844, CVE-2026-44279, CVE-2025-53870, CVE-2026-26083, CVE-2026-44277, CVE-2026-44278, CVE-2025-67604, CVE-2025-53680, CVE-2026-25690) to trigger security restriction bypass, remote code execution, elevation of privilege, sensitive information disclosure and denial of service on the targeted system. These vulnerabilities affect FortiNDR, FortiMail, FortiOS, FortiTokenAndroid, FortiAP, FortiAP-U, FortiAP-W2, FortiSandbox, FortiSandbox Cloud, FortiSandbox PaaS, FortiAuthenticator, FortiClientWindows, FortiAnalyzer, FortiManager, FortiDeceptor products.
More information on vulnerabilities and updates is available in Fortinet security advisories – fortinet.com.
22 May 2026