Fortinet has released security updates addressing multiple vulnerabilities that exist in their products. An attacker could exploit these vulnerabilities to gain system access and take control of an affected system.

Users are advised to review security advisories and apply the necessary updates:

Command injection vulnerability (CVE-2021-26116) in FortiAuthenticator - FG-IR-21-068

Command injection vulnerability (CVE-2021-22127) in FortiClient for Linux - FG-IR-20-241

An improper authentication vulnerability (CVE-2021-24017) in FortiManager - FG-IR-20-189

Arbitrary Code Execution vulnerability (CVE-2021-24016) in FortiManager – FG-IR-20-190

Information disclosure vulnerability ( CVE-2021-32600) in FortiOS – FG-IR-20-243

Unauthorized code or commands execution vulnerability (CVE-2021-36169) in FortiGate – FG-IR-21-091

Information disclosure vulnerability ( CVE-2019-17655) in FortiOS - FG-IR-19-217

Information disclosure vulnerability ( CVE-2020-29012) in FortiSandbox – FG-IR-20-070

Unauthorized code or commands execution vulnerability (CVE-2021-36179) in FortiWeb – FG-IR-20-206

OS command injection vulnerability (CVE-2021-36182) in FortiWeb – FG-IR-21-047

Denial of Service vulnerability (CVE-2020-29013) in FortiSandbox – FG-IR-20-178.