Fortinet black logo

Administration Guide

Home FortiGate / FortiOS 7.4.2 Administration Guide
7.4.2
7.4.3
7.4.2
7.4.1
7.4.0
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0

One-time upgrade prompt when a critical vulnerability is detected upon login

One-time upgrade prompt when a critical vulnerability is detected upon login

When FortiOS detects a critical vulnerability, a prompt appears for a one-time upgrade after logging into the FortiGate. A warning message is displayed in the GUI about the critical vulnerability and allows the administrator to either upgrade or skip it. This ensures that the administrator is aware of any potential security risks and can take immediate action to address them.

Clicking the hyperlinked vulnerability name opens the Security Fabric > Security Rating page, which displays more information about the vulnerability. See PSIRT-related notifications for more information.

Clicking the Upgrade button opens the System > Firmware & Registration page where the administrator can upgrade the device. See Firmware & Registration for more information.

Clicking the Skip upgrade & I understand the risk button continues the log in process as usual.

Diagnostics

To view vulnerability results after performing security rating scan:
# diagnose report-runner vuln-read
Index: 0
Name: FG-IR-23-001: FortiOS / FortiManager / FortiAnalyzer / FortiWeb / FortiProxy / FortiSwitchManager - Heap buffer underflow in administrative interface
FortiGate Serial: FGVM02TM23000000
To clear the vulnerability result:
# diagnose report-runner vuln-clean 
Deleted temporary critical vulnerability file
Previous
Next

One-time upgrade prompt when a critical vulnerability is detected upon login

When FortiOS detects a critical vulnerability, a prompt appears for a one-time upgrade after logging into the FortiGate. A warning message is displayed in the GUI about the critical vulnerability and allows the administrator to either upgrade or skip it. This ensures that the administrator is aware of any potential security risks and can take immediate action to address them.

Clicking the hyperlinked vulnerability name opens the Security Fabric > Security Rating page, which displays more information about the vulnerability. See PSIRT-related notifications for more information.

Clicking the Upgrade button opens the System > Firmware & Registration page where the administrator can upgrade the device. See Firmware & Registration for more information.

Clicking the Skip upgrade & I understand the risk button continues the log in process as usual.

Diagnostics

To view vulnerability results after performing security rating scan:
# diagnose report-runner vuln-read
Index: 0
Name: FG-IR-23-001: FortiOS / FortiManager / FortiAnalyzer / FortiWeb / FortiProxy / FortiSwitchManager - Heap buffer underflow in administrative interface
FortiGate Serial: FGVM02TM23000000
To clear the vulnerability result:
# diagnose report-runner vuln-clean 
Deleted temporary critical vulnerability file
Previous
Next