Fortinet has published a security advisory, highlighting vulnerabilities in the following products on the 1st of April 2022. It is recommended that you take the necessary precautions by ensuring your products are always updated.
Spring4Shell and CVE-2022-22963 multiple products and versions
CVE-2022-0778 (OpenSSL) multiple products and versions
For more information on these updates, you can follow these URLs:
https://www.fortiguard.com/psirt/FG-IR-22-072
https://www.fortiguard.com/psirt/FG-IR-22-059
https://www.cyber.gc.ca/en/alerts/spring-remote-code-execution-vulnerabilities
https://www.cyber.gc.ca/en/alerts/openssl-security-advisory-av22-137
The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.
PDF Download: Fortinet Security Advisory.pdf
References
Fortinet Security Advisory (5th April 2022). Retrieved from Canadian Centre for Cyber Security.
https://cyber.gc.ca/en/alerts/fortinet-security-advisory-av22-175
Fortinet Security Advisory (1st April 2022). Retrieved from FortiGuard Labs.
https://www.fortiguard.com/psirt