Administrative FortiCloud SSO Authentication Bypass Vulnerability - 20260129001¶
Overview¶
An authentication bypass vulnerability in FortiOS, FortiManager, FortiAnalyzer, FortiProxy, FortiWeb may allow an attacker with a FortiCloud account and a registered device to log into other devices registered to other accounts, if FortiCloud SSO authentication is enabled on those devices.
What is vulnerable?¶
| Product(s) Affected | Version(s) | CVE | CVSS | Severity |
|---|---|---|---|---|
| FortiAnalyzer FortiManager FortiOS FortiProxy |
Vendor listed affected versions | CVE-2026-24858 | 9.8 | Critical |
What has been observed?¶
CISA added one or more of the listed vulnerabilities to their Known Exploited Vulnerabilities catalog. The WASOC has not received any reports of exploitation of this vulnerability on Western Australian Government networks at the time of writing.
Recommendation¶
The WASOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframes (refer Patch Management):
- FortiGuard Labs: https://fortiguard.fortinet.com/psirt/FG-IR-26-060