The advisory says even if your org doesn't use the os you should apply mitigations.

https://siliconangle.com/2021/04/04/hackers-actively-targeting-fortios-vulnerabilities-warn-fbi-cisa/

--

Russell