Alert: Fortinet Security Updates – July 2025
Fortinet has released a security update addressing multiple vulnerabilities in its products. These vulnerabilities affect several Fortinet products, including but not limited to FortiOS, FortiProxy and FortiAnalyzer.
Affected Systems:
The affected systems and versions include, but are not limited to:
-
FortiOS: 7.6.0-7.6.1, 7.4.0 - 7.4.7, 7.2.0 - 7.2.10, 7.0.1 - 7.0.16.
-
FortiProxy: 7.6.0-7.6.1, 7.4.0 - 7.4.8, 7.2.0 - 7.2.13, 7.0.0 - 7.0.20.
-
FortiAnalyzer: 7.6.0 - 7.6.1, 7.4.0 - 7.4.6, 7.2(all versions) - 7.0(all versions) - 6.4(all versions).
Security Risks
Successful exploitation of the vulnerabilities in Fortinet software could allow unauthorized individuals to gain access to and control of affected systems.
For a complete list of the security patches released by Fortinet, please refer to the official Fortinet security advisory.
Recommended Actions
The National Cyber Security Authority (NCSA) strongly recommends that system administrators:
-
Follow Fortinet Security Advisory to lower the risk of potential exploits, protect systems, and ensure their security.
-
Apply the required and latest security updates as soon as possible.
The released software versions for upgrade include, but are not limited to:
-
FortiOS: Upgrade to 7.6.3 or above, 7.4.8 or above, 7.2.11 or above, 7.0.17 or above.
-
FortiProxy: Upgrade to 7.6.2 or above, 7.4.9 or above, 7.2.14 or above, 7.0.21 or above.
-
FortiAnalyzer: Upgrade to 7.6.2 or above, 7.4.7 or above, Migrate to a fixed release for 7.2(all versions) - 7.0(all versions) - 6.4(all versions).
For further information and support, please contact NCSA by email at rwcsirt@ncsa.gov.rw or call us at 9009.
References
11 July 2025
More updates