Add PSIRT vulnerabilities to security ratings and notifications for critical vulnerabilities found on Fabric devices 7.2.1
On a FortiGate with a valid Security Rating license, the separate Security Rating package downloaded from FortiGuard supports PSIRT vulnerabilities, which are highlighted in security rating results.
- Go to System > FortiGuard and expand the License Information table.
- Check that Security Rating appears in the list and the license is valid.
# diagnose autoupdate versions ... Security Rating Data Package --------- Version: 4.00008 Contract Expiry Date: Sun Jun 18 2023 Last Updated using scheduled update on Thu Jun 23 15:48:13 2022 Last Update Attempt: Thu Jun 23 15:48:13 2022 Result: Updates Installed FDS Address --------- 126.96.36.199:443
If the security rating result indicates a vulnerability with a critical severity, then the FortiOS GUI displays a warning message in the header and a new notification under the bell icon. The View Vulnerability link appears in the header for global administrators.
Clicking the warning message redirects to the System > Fabric Management page, where users are encouraged to update any affected Fortinet Fabric devices to the latest firmware releases to resolve the critical vulnerabilities.
When a failed result is selected, the security panel provides a description of the PSIRT vulnerability for failed results.
The Recommendations section includes a link to the System > Fabric Management page to update the firmware.
In the search bar, use PSIRT keywords to filter for PSIRT vulnerabilities.
A tooltip for the critical vulnerability label on the System > Fabric Management page lists the vulnerability, and it links to the Security Fabric > Security Rating page where more details about the vulnerability are displayed.