U.S. government agencies have been given a shorter window than usual to patch a critical vulnerability affecting Fortinet's FortiWeb firewall product.