FortiPortal Reboot Vulnerability

MEDIUM (6.8) Patch Available

Threat Intelligence

Low Risk

EPSS Score: 0.02% chance of exploitation (percentile: 4%)

🔍 Detection Tools: None available in major open-source tools

⚔️ Exploit Availability: No public exploits found

How we test →

What is it?

FortiPortal is a web-based interface for managing FortiGate devices. It's used by organizations to configure and monitor their firewall settings. This vulnerability allows an authenticated attacker to reboot a shared FortiGate device via crafted HTTP requests, potentially leading to Denial of Service (DoS) attacks.

Am I affected?

Affected versions: 7.4.5 If you don't recognise this software, you're probably not affected.

Affected Products

Fortinet / FortiPortal

How to fix

To fix this vulnerability, upgrade to FortiPortal 7.4.6 or above from the official Fortinet website:

https://support.fortinet.com/fortiguard/psirt/FG-IR-25-032

Immediate mitigations if you can't upgrade immediately:

Restrict network access to your FortiPortal instance (firewall it from the public internet)
Audit admin account activity for suspicious access patterns
Monitor for unauthorized token creation

References

Vendor Advisory