Fortinet, Ivanti, and ServiceNow Address Multiple Vulnerabilities
Fortinet, Ivanti, and ServiceNow have collectively released patches for 15 vulnerabilities, including critical flaws in ServiceNow's AI platform and Fortinet's security products.

The cybersecurity landscape saw a flurry of activity this week as major vendors Fortinet, Ivanti, and ServiceNow issued patches for a combined total of 15 vulnerabilities. Among the most critical is a remote code execution (RCE) flaw impacting the ServiceNow AI platform, tracked as CVE-2026-6875. This high-severity vulnerability, with a CVSS score of 9.5, allows unauthenticated remote attackers to execute arbitrary code, posing a significant risk to users of the platform.
ServiceNow has addressed this critical issue by deploying a security update to its hosted instances and providing relevant patches to self-hosted customers and partners. The company stated it is not aware of any exploitation of this vulnerability in the wild, urging users to apply the updates promptly to mitigate potential threats.
Ivanti also released fixes for two security defects in its data aggregation and visualization tool, Xtraction. These vulnerabilities, CVE-2026-14902 and CVE-2026-14903, include a medium-severity open redirect flaw and a high-severity path traversal bug. The path traversal vulnerability could allow attackers to read arbitrary files outside the web root, while the open redirect could be used to send users to malicious external websites. Ivanti has also confirmed no known exploitation of these issues.
Fortinet, a frequent target in the vulnerability disclosure cycle, published a substantial 11 security advisories detailing 12 vulnerabilities across a wide array of its products. These include FortiOS, FortiProxy, FortiSASE, FortiSIEM, FortiClient EMS, FortiAuthenticator, FortiPAM, FortiSwitch Manager, FortiSwitch-Manager Agentless SSL-VPN, and FortiSandbox. The most severe of these affect FortiAuthenticator and FortiSandbox, allowing remote unauthenticated attackers to retrieve sensitive information or gain access to the VNC server of malware scanning virtual machines.
Other vulnerabilities patched by Fortinet range in severity and impact, including issues leading to memory leaks, command execution, arbitrary header injection, interception and modification of authentication requests, impersonation of an Active Directory Connector, deletion of the file system, and various forms of code execution. Fortinet has not reported any of these vulnerabilities being exploited in active attacks.
The coordinated patching efforts by these vendors highlight the ongoing challenges in securing complex software ecosystems. The ServiceNow AI platform vulnerability, in particular, underscores the security considerations for AI-driven technologies, where a single flaw can have far-reaching implications due to the sensitive data and critical functions they often manage.
Users and administrators of ServiceNow, Ivanti Xtraction, and the various affected Fortinet products are strongly advised to review the respective vendor advisories and apply the necessary security updates as soon as possible. Proactive patching remains the most effective defense against the exploitation of known vulnerabilities.