The current version of FortiOS (FortiGate) is 8.0 (as of 08/07/2026).
FortiOS (FortiGate)
Fortinet · current 8.0
Actively exploited vulnerabilities
The US cybersecurity agency CISA lists these vulnerabilities in its catalog of Known Exploited Vulnerabilities. Check your version and patch or mitigate promptly.
- CVE-2018-13379Fortinet FortiOS SSL VPN Path Traversal VulnerabilityRansomware
- CVE-2020-12812Fortinet FortiOS SSL VPN Improper Authentication VulnerabilityRansomware
- CVE-2018-13383Fortinet FortiOS and FortiProxy Out-of-bounds WriteRansomware
- CVE-2018-13382Fortinet FortiOS and FortiProxy Improper AuthorizationRansomware
- CVE-2018-13374Fortinet FortiOS and FortiADC Improper Access Control VulnerabilityRansomware
- CVE-2022-42475Fortinet FortiOS Heap-Based Buffer Overflow VulnerabilityRansomware
- CVE-2023-27997Fortinet FortiOS and FortiProxy SSL-VPN Heap-Based Buffer Overflow VulnerabilityRansomware
- CVE-2024-21762Fortinet FortiOS Out-of-Bound Write VulnerabilityRansomware
- CVE-2024-55591Fortinet FortiOS and FortiProxy Authentication Bypass VulnerabilityRansomware
- CVE-2025-24472Fortinet FortiOS and FortiProxy Authentication Bypass VulnerabilityRansomware
- CVE-2019-6693Fortinet FortiOS Use of Hard-Coded Credentials VulnerabilityRansomware
- CVE-2019-5591Fortinet FortiOS Default Configuration Vulnerability
- CVE-2021-44168Fortinet FortiOS Arbitrary File Download
- CVE-2022-41328Fortinet FortiOS Path Traversal Vulnerability
Source: CISA KEV. The CVE is matched to the product automatically — when in doubt, the linked NVD entry applies.
FortiOS (FortiGate) at a glance
FortiOS is the operating system on Fortinet's FortiGate firewalls, one of the most widespread enterprise perimeter platforms. Fortinet ships FortiOS releases across several branches plus security advisories — and FortiGate devices have repeatedly been the focus of actively exploited vulnerabilities, so patching here is not optional.
For admins the essentials: never expose the management or SSL-VPN interface to the WAN unprotected, and apply security advisories promptly. Pick the right FortiOS branch per model, take a config backup before upgrading, and follow the documented upgrade path (don't skip too many versions). On HA pairs mind the order; after upgrading, verify VPN tunnels and policies. Subscribe to Fortinet's PSIRT advisories — patchletter flags new FortiOS builds so nothing critical slips.
Support cycles (endoflife.date)
| Cycle | Latest version | Status |
|---|---|---|
| 8.0 | – | EOL 21 Oct 30 |
| 7.6 | – | EOL 25 Jan 30 |
| 7.4 | – | EOL 11 Nov 28 |
| 7.2 | – | EOL in 82 days |
| 7.0 | – | End of Life |
| 6.4 | – | End of Life |
| 6.2 | – | End of Life |
| 6.0 | – | End of Life |
Release history · as detected by patchletter
| Version | Channel | Date | Notes |
|---|---|---|---|
| 8.0 | STABLE | 08/07/2026 | – |
Never miss a FortiOS (FortiGate) update
We check the source daily and email you — instantly or as a digest. Free, one-click unsubscribe.
Watch FortiOS (FortiGate)