CVE-2026-24858 - Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability

Vulnerability Name

Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability

Description

Fortinet FortiAnalyzer, FortiManager, FortiOS, and FortiProxy contain an authentication bypass using an alternate path or channel that could allow an attacker with a FortiCloud account and a registered device to log into other devices registered to other accounts, if FortiCloud SSO authentication is enabled on those devices.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

Please adhere to Fortinet's guidelines to assess exposure and mitigate risks. Check for signs of potential compromise on all internet accessible Fortinet products affected by this vulnerability. Apply any final mitigations provided by the vendor as soon as they become available. For more information please see: https://fortiguard.fortinet.com/psirt/FG-IR-26-060

https://www.fortinet.com/blog/psirt-blogs/analysis-of-sso-abuse-on-fortios

https://nvd.nist.gov/vuln/detail/CVE-2026-24858

Related News Articles

CISA orders feds to patch exploited Fortinet EMS flaw by FridayApril 7, 2026

Critical Fortinet Forticlient EMS flaw now exploited in attacksMarch 30, 2026

FortiGate Devices Exploited to Breach Networks and Steal Service Account CredentialsMarch 11, 2026

Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code ExecutionFebruary 10, 2026