Fortinet FortiOS, FortiProxy, and FortiSASE URL Redirection Vulnerability Allowing Open Redirects

A URL redirection vulnerability allowing open redirect attacks has been identified in multiple Fortinet products, including FortiOS versions 7.6.0 to 7.6.2, 7.4.0 to 7.4.8, 7.2 (all versions), 7.0 (all versions), and 6.4 (all versions). FortiProxy versions 7.6.0 to 7.6.3, 7.4 (all versions), 7.2 (all versions), and 7.0 (all versions) are also affected. Additionally, FortiSASE version 25.2.a is vulnerable. This vulnerability may allow an unauthenticated attacker to perform an open redirect attack by sending crafted HTTP requests.

Impact

Exploitation of this vulnerability could lead to open redirect attacks, allowing attackers to redirect users to untrusted sites.

Remediation

Users of Fortinet FortiOS should upgrade to version 7.6.4 or 7.4.9, depending on their current version. Fortinet FortiProxy users should upgrade to version 7.6.4 or migrate to a fixed release, depending on their current version. Fortinet FortiSASE customers do not need to take any action, as Fortinet has already remediated this issue in version 25.3.b.