Fortinet has released security updates to address two critical vulnerabilities (CVE-2025-59718 and CVE-2025-59719) that could allow attackers to bypass FortiCloud SSO authentication. However, the vulnerable feature is not enabled by default on devices not registered with FortiCare.
To protect their systems against attacks, admins are advised to temporarily disable the FortiCloud login feature until they upgrade to a non-vulnerable version. This can be done by switching “Allow administrative login using FortiCloud SSO” to Off in the System -> Settings menu or by running a specific command from the command-line interface.
Fortinet has also patched two additional vulnerabilities (CVE-2025-59808 and CVE-2025-64471) that could allow attackers to reset user account credentials without being prompted for the password. These vulnerabilities are frequently exploited in ransomware and cyber-espionage attacks, highlighting the importance of keeping Fortinet security updates up-to-date.
In related news, Fortinet has experienced frequent exploitation of its security vulnerabilities, including a recent zero-day exploit (CVE-2025-58034) that was actively used in attacks.
Source: https://www.bleepingcomputer.com/news/security/fortinet-warns-of-critical-forticloud-sso-login-auth-bypass-flaws