CVE-2026-22153

Name of the Vulnerable Software and Affected Versions Fortinet FortiOS versions 7.6.0 through 7.6.4

Description An authentication bypass issue exists in Fortinet FortiOS. This flaw may allow an unauthenticated attacker to bypass LDAP authentication for Agentless VPN or Fortinet Single Sign-On (FSSO) policies when the remote LDAP server is configured in a specific way. The issue is due to improper handling of LDAP authentication requests and requires LDAP server configurations that enable unauthenticated binds. An attacker could exploit this to gain unauthorized access without valid credentials. The vulnerable component is the fnbamd daemon.

Recommendations Fortinet FortiOS version 7.6.5 and later are not affected. Upgrade to FortiOS version 7.6.5 or a later version. Disable anonymous or unauthenticated LDAP binds to prevent unauthorized network access via SSL-VPN policy controls.