Fortinet has launched security updates to handle two essential vulnerabilities in FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager that would permit attackers to bypass FortiCloud SSO authentication.
Menace actors can exploit the 2 security flaws tracked as CVE-2025-59718 (FortiOS, FortiProxy, FortiSwitchManager) and CVE-2025-59719 (FortiWeb) by abusing improper verification of cryptographic signature weaknesses in susceptible merchandise through a maliciously crafted SAML message.
Nonetheless, as Fortinet defined in an advisory revealed right now, the susceptible FortiCloud function isn’t enabled by default when the machine isn’t FortiCare-registered.
“Please word that the FortiCloud SSO login function isn’t enabled in default manufacturing unit settings,” Fortinet stated. “Nonetheless, when an administrator registers the machine to FortiCare from the machine’s GUI, except the administrator disables the toggle swap ‘Permit administrative login utilizing FortiCloud SSO’ within the registration web page, FortiCloud SSO login is enabled upon registration.”
To guard their techniques towards assaults exploiting these vulnerabilities, admins are suggested to briefly disable the FortiCloud login function (if enabled) till they improve to a non-vulnerable model.
To disable FortiCloud login, navigate to System -> Settings and swap “Permit administrative login utilizing FortiCloud SSO” to Off. Alternatively, you may run the next command from the command-line interface:
config system world
set admin-forticloud-sso-login disable
finish
Right now, the corporate additionally patched an unverified password change vulnerability (CVE-2025-59808) that permits attackers “who gained entry to a sufferer’s consumer account to reset the account credentials with out being prompted for the account’s password,” and one other one that may let menace actors authenticate utilizing the hash rather than the password (CVE-2025-64471).
Fortinet security vulnerabilities are regularly exploited (typically as zero days) in each ransomware and cyber-espionage assaults.
As an example, Fortinet disclosed in February that the Chinese language Volt Storm hacking group backdoored a Dutch Ministry of Defence army community utilizing customized Coathanger distant entry trojan (RAT) malware after exploiting two FortiOS SSL VPN flaws (CVE-2023-27997 and CVE-2022-42475).
Extra not too long ago, in August, Fortinet patched a command injection vulnerability (CVE-2025-25256) with publicly accessible exploit code in its FortiSIEM security monitoring answer, someday after cybersecurity firm GreyNoise reported a large spike in brute-force assaults focusing on Fortinet SSL VPNs.
In November, Fortinet warned of a FortiWeb zero-day (CVE-2025-58034) that was actively exploited in assaults, one week after confirming that it had silently patched one other massively exploited FortiWeb zero-day (CVE-2025-64446).
Damaged IAM is not simply an IT downside – the impression ripples throughout your entire enterprise.
This sensible information covers why conventional IAM practices fail to maintain up with fashionable calls for, examples of what “good” IAM appears to be like like, and a easy guidelines for constructing a scalable technique.
