The Vulnerability Scan tab identifies vulnerabilities on the endpoint that should be fixed by installing software patches. You can automatically install software patches by clicking the Fix Now link or review detected vulnerabilities before installing software patches.
Any software patches that cannot be automatically installed are listed on the Vulnerability Scan tab and you should manually download and install software patches for the vulnerable software.
If compliance is enabled for FortiClient in managed mode and FortiGate compliance rules require it, all software patches must be installed within a time frame to maintain compliant status and network access. See Compliance and vulnerability scanning.
In managed mode, you may be unable to automatically fix vulnerabilities. An administrator may have the vulnerabilities automatically fixed for you.
In the Vulnerability Scan tab, under Vulnerabilities Detected, click Fix Now to automatically install software patches to fix the detected vulnerabilities.
FortiClient installs the software patches. You may need to reboot the endpoint to complete installation.