Fortinet FortiPortal is an advanced, feature-rich hosted security analysis and management support tool for Fortinetβs FortiGate, FortiWiFi and FortiAP product lines, available as a virtual machine for use by MSPs. The vulnerability stems from an improper restriction of the XML external entity reference vulnerability in the XML response parser, which can be exploited by an attacker to trigger a denial of service or read arbitrary files from the underlying file system.