Bleeping Computer

Fortinet: New FortiOS RCE bug "may have been exploited" in attacks

Fortinet says a critical FortiOS SSL VPN vulnerability that was patched last week "may have been exploited" in attacks impacting government, manufacturing, and critical infrastructure organizations.
Bleeping Computer

Fortinet warns of new critical FortiManager flaw used in zero-day attacks

Fortinet publicly disclosed today a critical FortiManager API vulnerability, tracked as CVE-2024-47575, that was exploited in zero-day attacks to steal sensitive files containing configurations, IP ...
Infosecurity-magazine.com

Fortinet Confirms Critical Zero-Day Vulnerability in Firewalls

Fortinet has disclosed a new critical zero-day vulnerability affecting some of its FortiGate firewalls. In a security advisory published on January 14, FortiGuard Labs revealed a new authentication ...
Dark Reading

Actively Exploited Fortinet Zero-Day Gives Attackers Super-Admin Privileges

Fortinet has patched an actively exploited zero-day authentication bypass flaw affecting its FortiOS and FortiProxy products, which attackers have been exploiting to gain super-administrative access ...