Fortinet Products | Log4j Vulnerability

Fortinet Products affected by Log4j Vulnerability are FortiAIOps, FortiCASB, FortiConvertor, FortiEDR Cloud, FortiNAC, FortiPolicy, FortiPortal, FortiSIEM, FortiSOAR and ShieldX.Rest of the products like FortiAnalyzer Cloud, FortiAnalyzer, FortiAuthenticator, FortiDeceptor, FortiEDR Agent, FortiEDR Cloud, FortiGSLB Cloud, FortiMail,FortiManager Cloud, Forti Gate has been unaffected by this Vulnerability. Some of the Fortinet Products has been already patched and for others detailed mitigation steps have been given below. List of Impacted/Not Impacted products have been given below in the table


Fortinet ProductStatusPatched?
FortiAIOpsVulnerablePatched
FortiAnalyzer CloudNot VulnerableNot Needed
FortiAnalyzerNot VulnerableNot Needed
FortiAPNot VulnerableNot Needed
FortiAuthenticatorNot VulnerableNot Needed
FortiCASBVulnerablePatched
FortiConvertorVulnerablePatched
FortiDeceptorNot VulnerableNot Needed
FortiEDR AgentNot VulnerableNot Needed
FortiEDR CloudVulnerablePatched
FortiGate CloudNot VulnerableNot Needed
FortiGSLB CloudNot VulnerableNot Needed
FortiMailNot VulnerableNot Needed
FortiManager CloudNot VulnerableNot Needed
FortiManagerNot VulnerableNot Needed
FortiNACVulnerablePatched
FortiNACVulnerablePatched
FortiGateNot VulnerableNot Needed
FortiWiFiNot VulnerableNot Needed
FortiOSNot VulnerableNot Needed
FortiPhish CloudNot VulnerableNot Needed
FortiPolicyVulnerablePatched
FortiPortalVulnerablePatched
FortiRecorderNot VulnerableNot Needed
FortiSIEMVulnerablePatched
FortiSOARVulnerablePatched
FortiSwitch Cloud in FortiLANCloudNot VulnerableNot Needed
FortiSwitch & FortiSwitchManagerNot VulnerableNot Needed
FortiToken CloudNot VulnerableNot Needed
FortiVoiceNot VulnerableNot Needed
FortiWeb CloudNot VulnerableNot Needed
ShieldXVulnerablePatched
Source: https://www.fortiguard.com/psirt/FG-IR-21-245

Scroll to Top