Fortinet News Articles
Recent news articles refferecing the vendors vulnerabilities.
BankInfoSecurity CVE-2024-23113Fortinet Edge Devices Under Attack - Again
Hackers may have circumvented a months-old patch for Fortinet gateway devices leading to a warning from the U.S. federal government over its active exploitation.
2 days ago
Darktrace CVE-2024-47575Post Exploitation Activities on Fortinet Devices: A Network-Based Analysis | Darktrace Blog
This blog explores recent findings from Darktrace's Threat Research team on active exploitation campaigns targeting Fortinet appliances. This analysis focuses on the September 2024 exploitation of FortiManager via CVE-2024-47575, alongside related malicious activity observed in June 2024.
6 days ago
watchTowr Labs - Blog CVE-2024-47575Hop-Skip-FortiJump-FortiJump-Higher - Fortinet FortiManager CVE-2024-47575
It’s been a tricky time for Fortinet (and their customers) lately - arguably, even more so than usual. Adding to the steady flow of vulnerabilities in appliances recently was a nasty CVSS 9.8 vulnerability in FortiManager, their tool for central management of FortiGate appliances. As always, the op...
1 week ago
CVE-2024-47574CVE-2024-50564High-severity Fortinet VPN flaw allows privilege escalation
A now-patched, high-severity bug in Fortinet's FortiClient VPN application potentially allows a low-privilege rogue user or malware on a vulnerable Windows system to gain higher privileges from another user,...
1 week ago
The Cyber Express CVE-2024-47575FortiManager May Still Be Vulnerable Despite FortiJump Patch
The FortiJump vulnerability in Fortinet FortiManager may not have been completely fixed by last month's patch. Users are urged to apply mitigations.
3 weeks ago
The Cyber Express CVE-2024-475751 Million Vulnerable Fortinet, SonicWall Devices Exposed
1 million Fortinet and SonicWall devices with actively exploited vulnerabilities are exposed on the internet, and WordPress and IoT devices face cyberattacks.
3 weeks ago
Hackread CVE-2024-47575UNC5820 Exploits FortiManager Zero-Day Vulnerability (CVE-2024-47575)
Fortinet and Mandiant investigate the mass exploitation of FortiManager devices via CVE-2024-47575, impacting 50+ systems across industries.
1 month ago
CyberSecurityNews CVE-2024-47575FortiManager Devices Mass Compromise Exploiting CVE-2024-47575 Vulnerability
Shadowserver has issued a critical warning about the widespread exploitation of Fortinet FortiManager devices using the recently disclosed CVE-2024-47575 vulnerability.
1 month ago
Critical Bug Exploited in Fortinet's Management Console
An attacker compromised one of Fortinet's most sensitive products and mopped up all kinds of reconnaissance data helpful for future mass device attacks.
1 month ago
High-severity FortiManager bug being exploited by hackers
The bug carries a critical severity score of 9.8 and could allow hackers to steal troves of sensitive information that would facilitate further access.
1 month ago
Security Affairs CVE-2024-47575FortiJump flaw CVE-2024-47575 has been exploited in zero-day attacks since June 2024
The "FortiJump" flaw (CVE-2024-47575) has been exploited in zero-day attacks since June 2024, impacting over 50 servers, says Mandiant.
1 month ago
Help Net Security CVE-2024-47575Fortinet FortiManager flaw exploited in zero-day attacks (CVE-2024-47575) - Help Net Security
Fortinet has publicly released information about CVE-2024-47575, a FortiManager flaw under active exploitation.
1 month ago
The Hacker News CVE-2024-47575Fortinet Warns of Critical Vulnerability in FortiManager Under Active Exploitation
Discover critical details on Fortinet's FortiManager vulnerability (CVE-2024-47575) and essential mitigation strategies.
1 month ago
The Stack CVE-2024-47575Fortinet confirms zero day exploitation of CVE-2024-47575
Fortinet confirms zero day exploitation: Pre-auth RCE now allocated CVE-2024-47575. What's going on with Fortinet product security again?
1 month ago
Fortinet discloses critical zero-day flaw in FortiManager | TechTarget
Fortinet confirmed reports of a critical zero-day vulnerability in FortiManager, which CISA added to its Known Exploited Vulnerabilities catalog.
1 month ago
Fortinet warns of new critical FortiManager flaw used in zero-day attacks
Fortinet publicly disclosed today a critical FortiManager API vulnerability, tracked as CVE-2024-47575, that was exploited in zero-day attacks to steal sensitive files containing configurations, IP addresses, and credentials for managed devices.
1 month ago
Help Net Security CVE-2024-23113Fortinet releases patches for undisclosed critical FortiManager vulnerability - Help Net Security
Fortinet has released critical security updates for FortiManager, to fix a critical vulnerability that is reportedly being exploited.
1 month ago
Help Net Security CVE-2024-2311387,000+ Fortinet devices still open to attack, are yours among them? (CVE-2024-23113) - Help Net Security
CISA added CVE-2024-23113 - a vulnerability that allows unauthenticated RCE on unpatched Fortinet FortiGate firewalls - to its KEV catalog.
1 month ago
watchTowr Labs - Blog CVE-2024-23113Fortinet FortiGate CVE-2024-23113 - A Super Complex Vulnerability In A Super Secure Appliance In 2024
Today we'd like to share a recent journey into (yet another) SSLVPN appliance vulnerability - a Format String vulnerability, unusually, in Fortinet's FortiGate devices. It affected (before patching) all currently-maintained branches, and recently was highlighted by CISA as being exploited-in-the-wi...
1 month ago
GBHackers CVE-2024-23113CVE-2024-9379CISA Added Fortinet & Ivanti vulnerabilities that Exploited in the Wild
CISA has recently updated its Known Exploited Vulnerabilities Catalog, adding critical vulnerabilities from Fortinet and Ivanti.
1 month ago
CybersecurityNews CVE-2024-23113CISA Warns of Fortinet RCE Vulnerability Actively Exploited
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning regarding a remote code execution (RCE) vulnerability in Fortinet products, identified as CVE-2024-23113.
1 month ago
Organizations Warned of Exploited Fortinet FortiOS Vulnerability
CISA has added a FortinetFortiOS vulnerability tracked as CVE-2024-23113 to its Known Exploited Vulnerabilities (KEV) catalog.
1 month ago
CISA says critical Fortinet RCE flaw now exploited in attacks
Today, CISA revealed that attackers actively exploit a critical FortiOS remote code execution (RCE) vulnerability in the wild.
1 month ago
ÇözümPark CVE-2023-33308Fortinet FortiOS ve FortiProxy'de Kritik RCE Zafiyeti (CVE-2023-33308) - ÇözümPark
Fortinet FortiOS ve FortiProxy'de Kritik RCE Zafiyeti (CVE-2023-33308)
5 months ago
CybersecurityNews CVE-2024-23110FortiOS Vulnerability Let Attackers Execute Unauthorized Commands
Fortinet has disclosed multiple stack-based buffer overflow vulnerabilities (CVE-2024-23110) in FortiOS's command line interpreter.
5 months ago
OODA Loop - Intelligence CVE-2024-23110Fortinet Patches Code Execution Vulnerability in FortiOS
On Tuesday, Fortinet released patches for multiple vulnerabilities in FortiOS and other products, including several that lead to code execution. The most severe, CVE-2024-23110 (CVSS score of 7.4), involves stack-based buffer overflow issues in the command line interpreter, potentially allowing auth...
5 months ago
Risky Biz CVE-2023-48788Risky Biz News: The Linux CNA mess
In other news: TikTok zero-day used to hack high-profile accounts; mysterious new APT targets China; Hungary's ruling party boycotts Russian hack investigation.
6 months ago
Red Hot Cyber CVE-2024-23108CVE-2024-23109Le vulnerabilità critiche nei dispositivi FortiSIEM, macOS e Glibc
Le vulnerabilità scoperte possono avere conseguenze devastanti per la privacy e l'integrità dei dati, oltre che per la continuità operativa.
6 months ago
Exploit for Fortinet Critical RCE Bug Allows SIEM Root Access
Corporate admins should patch the max-severity CVE-2024-23108 immediately, which allows unauthenticated command injection.
6 months ago
Help Net Security CVE-2024-23108CVE-2023-34992PoC exploits for critical FortiSIEM command execution flaws released (CVE-2024-23108, CVE-2023-34992) - Help Net Security
PoC exploits for CVE-2024-23108 and CVE-2023-34992, critical vulnerabilities affecting Fortinet FortiSIEM appliances, are public.
6 months ago
CybersecurityNews CVE-2024-23108CVE-2023-34992PoC Exploit Released for Critical Fortinet FortiSIEM Command Injection Vulnerability
A PoC exploit has been released for a critical vulnerability in Fortinet's FortiSIEM. the article delves into the details of vulnerability.
6 months ago
Security Affairs CVE-2024-23108Experts released PoC exploit code for RCE in Fortinet SIEM
Researchers released a proof-of-concept (PoC) exploit for remote code execution flaw CVE-2024-23108 in Fortinet SIEM solution.
6 months ago
Exploit released for maximum severity Fortinet RCE bug, patch now
Security researchers have released a proof-of-concept (PoC) exploit for a maximum-severity vulnerability in Fortinet's security information and event management (SIEM) solution, which was patched in February.
6 months ago
New Fortinet FortiSIEM flaws evading patches for older RCE reported
Fortinet has reported that its FortiSIEM solution is impacted by two new vulnerabilities that circumvent fixes issued for a critical remote code execution flaw, tracked as CVE-2023-34992, after mistakenly disclosing the newly identified issues as duplicates of the older bug, according to BleepingCom...
6 months ago
CybersecurityNews CVE-2023-34992Critical Unauthenticated RCE Vulnerability in Fortinet FortiSIEM: PoC Published
A proof-of-concept (PoC) exploit has been released for a critical unauthenticated, remote code execution vulnerability in Fortinet FortiSIEM, tracked as CVE-2023-34992.
6 months ago
Horizon3.ai CVE-2023-34992CVE-2023-34992: Fortinet FortiSIEM Command Injection Deep-Dive – Horizon3.ai
CVE-2023-34992 Fortinet FortiSIEM Command Injection Deep-Dive and Indicators of Compromise. This blog details a command injection vulnerability which allows an unauthenticated attacker to access the FortiSIEM server as root to execute arbitrary commands.
6 months ago
The Hacker News CVE-2023-48788Hackers Exploit Fortinet Flaw, Deploy ScreenConnect, Metasploit in New Campaign
If you use Fortinet FortiClient EMS, patch NOW. Hackers are actively using a new exploit
7 months ago
Industrial Cyber CVE-2023-48788Forescout discloses Connect:fun exploitation campaign targeting organizations using Fortinet's FortiClient EMS
Forescout discloses Connect:fun exploitation campaign targeting organizations using Fortinet's FortiClient EMS.
7 months ago
Fortinet patches FortiClientLinux critical RCE vulnerability
The vulnerability is due to a “dangerous nodejs configuration” and has a CVSS score of 9.4.
7 months ago
OP Innovate CVE-2023-48788CISA Expands Known Exploited Vulnerabilities Catalog with New Entries (CVE-2023-48788, CVE-2021-44529 and CVE-2019-7256) - OP INNOVATE
CISA adds three actively exploited vulnerabilities to its catalog: CVE-2023-48788 (Fortinet), CVE-2021-44529 (Ivanti), and CVE-2019-7256 (Nice Linear), urging prompt patching to mitigate risks of SQL injection, code injection, and OS command injection attacks.
8 months ago
Fortinet FortiClient EMS SQL injection flaw exploited in the wild
A PoC exploit is available for the critical flaw, which was added to CISA’s KEV catalog Monday.
8 months ago
SQL injection vulnerability in Fortinet software under attack | Tec...
Another critical Fortinet vulnerability is under attack. But internet scans show many customers remain unpatched against the SQL injection flaw.
8 months ago
Patch Now: Critical Fortinet RCE Bug Under Active Attack
A proof-of-concept exploit released last week has spurred attacks on the vulnerability, which the CISA has flagged as an urgent patch priority.
8 months ago
Recent Fortinet FortiClient EMS Vulnerability Exploited in Attacks
CVE-2023-48788, a critical SQL injection vulnerability in Fortinet’s FortiClient EMS product, is being exploited in the wild.
8 months ago
The Cyber Express CVE-2024-21762CVE-2024-21762 Exploit Sale Targets FortiOS SSL VPN
The CVE-2024-21762 exploit sale on the dark web targets Fortinet's FortiOS and FortiProxy systems with a potential remote code execution.
8 months ago
GBHackers on Security CVE-2023-48788Exploit Released For Critical Fortinet RCE Flaw: Patch Soon!
FortiClientEMS (Enterprise Management Server), the security solution used for scalable and centralized management was discovered
8 months ago
Tenable CVE-2023-48788CVE-2023-48788: Critical Fortinet FortiClientEMS SQL Injection Vulnerability
Fortinet warns of a critical SQL Injection vulnerability that could allow an unauthenticated attacker to execute arbitrary code on vulnerable FortiClientEMS software.
8 months ago
Exploit released for Fortinet RCE bug used in attacks, patch now
Security researchers have released a proof-of-concept (PoC) exploit for a critical vulnerability in Fortinet's FortiClient Enterprise Management Server (EMS) software, which is now actively exploited in attacks.
8 months ago