Fortinet FortiSRA is a network security solution used by organizations to monitor and control network traffic. This vulnerability allows attackers to execute arbitrary code on the server by sending specially crafted HTTP requests. If your organization uses FortiSRA, you're at risk of privilege escalation.
You're affected if you use:
- FortiOS 7.6 (versions 7.6.0 through 7.6.2)
Check with: grep "FortiOS" /var/log/fortinet.log or find / -name "fortinet.log"
Note: This vulnerability is specific to FortiOS, not FortiProxy, FortiPAM, or other products.
Upgrade to FortiOS 7.6.3 or above (solution available in the Fortinet upgrade tool)
- Immediate mitigations:
- Restrict network access to your FortiSRA instance (firewall it from the public internet)
- Audit admin account activity for suspicious access patterns
- Monitor for unauthorized token creation