Skip to content
VULNERABILITY
FortiCloud Single Sign-On (SSO) Bypass Vulnerabilities
Our records indicate you may be affected by the following vulnerabilities. We encourage you to reach out so we can help confirm or rule out any impact.
In December 2025, Fortinet issued an advisory regarding two FortiCloud single sign‑on (SSO) bypass vulnerabilities (CVE‑2025‑59718 and CVE‑2025‑59719). These issues were identified internally by Fortinet’s product security team during a code audit (FG‑IR‑25‑647).
These vulnerabilities could allow unauthorized access under certain conditions and are currently being actively exploited across the industry.
Fortinet is currently working on a permanent firmware fix. In the meantime, we are applying a temporary workaround that fully protects your system. Please review that statement of work below.
Scope of Work:
- Disabling the vulnerable feature
- Verifying your firewall’s security posture
- Confirming no signs of misuse or suspicious activity
This scope involves disabling an optional login feature your firewall does not need for normal operation.
Remediation and updates have the potential to cause other unforeseen issues or conflicts between software and/or hardware. If additional work is needed to get all systems and software to acceptable levels due to compatibility issues or conflicts, the time associated will be billed at time and materials.
If you would like to schedule the remediation work outside of your business hours please see below:
- Fill out remediation authorization form (directly below).
- Wait for email confirmation with support ticket information.
- Reply to email with your outside business hours request.
Our scheduling team will do our best to accommodate.
By completing the following form, you agree to:
- The scope of work
- Remediation estimate
- Being the primary point of contact for the duration of this ticket