Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mle2802
Staff
Staff

Created on ‎08-29-2023 07:10 AM Edited on ‎09-26-2023 12:12 PM By Staff

Article Id 270944

Troubleshooting Tip: PCI scan fails due to apparent 'safari-pinned-tab.svg' vulnerability

Description

This article describes the reasons for a PCI scan failure due to a seemingly vulnerable .gz file.
Scope Any supported version of FortiGate.
Solution

In some cases, the client performs a PCI scan and receives a failure report due to a vulnerability where there is a .gz file coming from the FortiGate public IP. The URL in the report may look like this: 'https://<FGT_IP>/favicon/safari-pinned-tab.svg'.

This file is simply a favicon with a Fortinet logo for the SSL-login page which can be found in the 'Replacement message' code:

 

 Picture1.png

 

Following the link in the PCI scan will show the Fortinet logo:


Picture2.png

 

Having a favicon exposed is not considered a security vulnerability. A favicon is a small icon or image that is displayed in the browser tab next to the title of a web page. These files do not disclose any sensitive info and hence are not considered vulnerable.
2928
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.