Here is list referenced in this video regarding the history of Fortinet and their history of security issues.
- Breaking the Fortigate SSL VPN
- Black Hat Talk about SSL VPN Infiltrating Corporate Intranet Like NSA - Pre-auth RCE on Leading SSL VPNs - YouTube
- Remote Password Change Vulnerability
- Fortinet FortiSIEM Hardcoded SSH Key
- Hard-coded password raises new backdoor eavesdropping fears
- Some Fortinet products shipped with hardcoded encryption keys
- Multiple Fortinet products use a weak encryption cipher (βXORβ) and hardcoded cryptographic keys
- FortiOS, FortiProxy, and FortiSwitchManager Authentication Bypass Technical Deep Dive (CVE-2022-40684)
- XORtigate: Pre-authentication Remote Code Execution on Fortigate VPN