Vendor Advisories – AppSalute

Fortinet

Insufficient Access Control Over API Endpoints
June 10, 2025
Insufficient Session Expiration in SSL-VPN cookie
June 10, 2025
Information Disclosure on SSLVPN endpoint
June 10, 2025
Improper Handling of Insufficient Permissions or Privileges in GUI websocket
June 10, 2025
IPsec improper validation of certificate with host mismatch
June 10, 2025
Multiple OS command injection in Web Vulnerability Scanner
June 10, 2025
Privilege escalation in automation-stitch
June 10, 2025
Blind SSRF in API
June 10, 2025
Weak authentication in security fabric daemon
June 10, 2025
eap-cert-auth bypass via revoked certificate
June 10, 2025

Microsoft