Fortinet Releases Security Advisory for FortiCloud SSO Login Authentication Bypass

Successful exploitation could allow an attacker with a FortiCloud account and a registered device to log into other devices registered to other accounts, if FortiCloud SSO authentication is enabled on those devices.

Threat ID:: CC-4741
Threat Severity:: Medium
Published:: 28 January 2026 1:36 PM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

Affected platforms

The following platforms are known to be affected:

Fortinet FortiAnalyzer

Versions

7.6.0 through 7.6.5
7.4.0 through 7.4.9
7.2.0 through 7.2.11
7.0.0 through 7.0.15

Fortinet FortiManager

Versions

7.6.0 through 7.6.5
7.4.0 through 7.4.9
7.2.0 through 7.2.11
7.0.0 through 7.0.15

Fortinet FortiOS

Versions

7.6.0 through 7.6.5
7.4.0 through 7.4.10
7.2.0 through 7.2.12
7.0.0 through 7.0.18

Fortinet FortiProxy

Versions:

7.6.0 through 7.6.4
7.4.0 through 7.4.12
7.2 all versions
7.0 all versions

Threat details

Exploitation of CVE-2026-24858

The US Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2026-24858 to their Known Exploited Vulnerabilities (KEV) Catalog. The NHS England National CSOC assesses exploitation as highly likely.

Introduction

Fortinet has released a security advisory to address a critical vulnerability affecting FortiAnalyzer, FortiManager, FortiOS and FortiProxy.

Devices are only vulnerable if the FortiCloud SSO login feature is enabled on the device.

CVE-2026-24858 - an 'Authentication Bypass Using an Alternate Path' vulnerability - CVSSv3 score: 9.1.

Remediation advice

Affected organisations are encouraged to review the Fortinet PSIRT FG-IR-26-060 and apply the relevant updates as soon as possible.

Definitive source of threat updates

https://fortiguard.fortinet.com/psirt/FG-IR-26-060

CVE Vulnerabilities

Status Published

CVE-2026-24858

An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.5, FortiAnalyzer 7.4.0 through 7.4.9, FortiAnalyzer 7.2.0 through 7.2.11, FortiAnalyzer 7.0.0 through 7.0.15, FortiManager 7.6.0 through 7.6.5, FortiManager 7.4.0 through 7.4.9, FortiManager 7.2.0 through 7.2.11, FortiManager 7.0.0 through 7.0.15, FortiOS 7.6.0 through 7.6.5, FortiOS 7.4.0 through 7.4.10, FortiOS 7.2.0 through 7.2.12, FortiOS 7.0.0 through 7.0.18 may allow an attacker with a FortiCloud account and a registered device to log into other devices registered to other accounts, if FortiCloud SSO authentication is enabled on those devices.

Last edited: 28 January 2026 1:36 pm