Fortinet black logo

New Features

Add PSIRT vulnerabilities to security ratings and notifications for critical vulnerabilities found on Fabric devices 7.2.1

Copy Link
Copy Doc ID 77966226-6996-11ec-bdf2-fa163e15d75b:257307
Download PDF

Add PSIRT vulnerabilities to security ratings and notifications for critical vulnerabilities found on Fabric devices 7.2.1

On a FortiGate with a valid Security Rating license, the separate Security Rating package downloaded from FortiGuard supports PSIRT vulnerabilities, which are highlighted in security rating results.

To verify the FortiGuard license entitlement in the GUI:
  1. Go to System > FortiGuard and expand the License Information table.
  2. Check that Security Rating appears in the list and the license is valid.

To verify the FortiGuard license entitlement in the CLI:
# diagnose autoupdate versions
...
Security Rating Data Package
---------
Version: 4.00008
Contract Expiry Date: Sun Jun 18 2023
Last Updated using scheduled update on Thu Jun 23 15:48:13 2022
Last Update Attempt: Thu Jun 23 15:48:13 2022
Result: Updates Installed

FDS Address
---------
173.243.140.6:443

GUI notifications

If the security rating result indicates a vulnerability with a critical severity, then the FortiOS GUI displays a warning message in the header and a new notification under the bell icon. The View Vulnerability link appears in the header for global administrators.

Clicking the warning message redirects to the System > Fabric Management page, where users are encouraged to update any affected Fortinet Fabric devices to the latest firmware releases to resolve the critical vulnerabilities.

Security Rating page

When a failed result is selected, the security panel provides a description of the PSIRT vulnerability for failed results.

The Recommendations section includes a link to the System > Fabric Management page to update the firmware.

In the search bar, use PSIRT keywords to filter for PSIRT vulnerabilities.

Tooltip

A tooltip for the critical vulnerability label on the System > Fabric Management page lists the vulnerability, and it links to the Security Fabric > Security Rating page where more details about the vulnerability are displayed.

Add PSIRT vulnerabilities to security ratings and notifications for critical vulnerabilities found on Fabric devices 7.2.1

On a FortiGate with a valid Security Rating license, the separate Security Rating package downloaded from FortiGuard supports PSIRT vulnerabilities, which are highlighted in security rating results.

To verify the FortiGuard license entitlement in the GUI:
  1. Go to System > FortiGuard and expand the License Information table.
  2. Check that Security Rating appears in the list and the license is valid.

To verify the FortiGuard license entitlement in the CLI:
# diagnose autoupdate versions
...
Security Rating Data Package
---------
Version: 4.00008
Contract Expiry Date: Sun Jun 18 2023
Last Updated using scheduled update on Thu Jun 23 15:48:13 2022
Last Update Attempt: Thu Jun 23 15:48:13 2022
Result: Updates Installed

FDS Address
---------
173.243.140.6:443

GUI notifications

If the security rating result indicates a vulnerability with a critical severity, then the FortiOS GUI displays a warning message in the header and a new notification under the bell icon. The View Vulnerability link appears in the header for global administrators.

Clicking the warning message redirects to the System > Fabric Management page, where users are encouraged to update any affected Fortinet Fabric devices to the latest firmware releases to resolve the critical vulnerabilities.

Security Rating page

When a failed result is selected, the security panel provides a description of the PSIRT vulnerability for failed results.

The Recommendations section includes a link to the System > Fabric Management page to update the firmware.

In the search bar, use PSIRT keywords to filter for PSIRT vulnerabilities.

Tooltip

A tooltip for the critical vulnerability label on the System > Fabric Management page lists the vulnerability, and it links to the Security Fabric > Security Rating page where more details about the vulnerability are displayed.