Skip to main content
ahmedfathy9414
ahmedfathy9414
New Member
September 16, 2025
Solved

Tenable Vulnerability report on fortigate device

  • September 16, 2025
  • 2 replies
  • 1136 views

Dears 

Appreciate your support to advise with the needed co to solve below issues:

High121010TLS Version 1.1 Protocol Detection
High17367Fortinet FortiGate Web Console Management Detection
Medium157288TLS Version 1.1 Deprecated Protocol
Medium187315SSH Terrapin Prefix Truncation Weakness (CVE-2023-48795)
Medium51192SSL Certificate Cannot Be Trusted
Medium57582SSL Self-Signed Certificate
Low153953SSH Weak Key Exchange Algorithms Enabled
Low10114ICMP Timestamp Request Remote Date Disclosure

 

Best answer by jiahoong112

FortiOS 5.4 has been End of Support for a long time now. I highly suggest upgrading to the more recent FortiOS versions like 7.2.11/12, 7.4.8, 7.6.4 and run the scan again. 
Upon upgrading to the newer versions, you can use features like ACME to generate a 3rd party signed certificate to use it for Administrative Access so that the 'Self-Signed certificate' warning won't come up on your vulnerability scan.

 

https://docs.fortinet.com/document/fortigate/7.6.4/administration-guide/822087/automatically-provision-a-certificate 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Recommended-Release-for-FortiOS/ta-p/227178 

2 replies

jiahoong112
Staff
jiahoong112
Staff
September 17, 2025

what version of FortiOS are you using?

ahmedfathy9414
ahmedfathy9414Author
New Member
September 17, 2025


The following instance of FortiOS Web Interface was detected on the remote host :
  Version : >= 5.4

Debbie_FTNT
Staff & Editor
Debbie_FTNT
Staff & Editor
September 17, 2025

Can you provide a precise firmware version?

5.4 was initially released in 2016, and anything below version 7.0 is essentially out of support by now (with 7.0 itself being out of support end of September) so if you are on any version between 5.4 and 7.0, I would recommend an upgrade to a supported version and then re-running the scan.

 

Cheers,

Debbie

Terms & ConditionsAccessibility statement