The Hacker News

Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution

Fortinet fixes critical FortiClientEMS SQL injection flaw (CVSS 9.1) enabling code execution; separate SSO bug actively exploited.
Bleeping Computer

New Fortinet RCE flaw in SSL VPN likely exploited in attacks

Fortinet is warning that a new critical remote code execution vulnerability in FortiOS SSL VPN is potentially being exploited in attacks. The flaw (tracked as CVE-2024-21762 / FG-IR-24-015) received a ...
Bleeping Computer

Fortinet fixes critical RCE flaw in Fortigate SSL-VPN devices, patch now

Update 6/12/23 added below: Fortinet released a new advisory warning that the vulnerability may have been exploited in attacks. Fortinet has released new Fortigate firmware updates that fix an ...
Ars Technica

FortiGate admins report active exploitation 0-day. Vendor isn’t talking.

Fortinet, a maker of network security software, has kept a critical vulnerability under wraps for more than a week amid reports that attackers are using it to execute malicious code on servers used by ...
Ars Technica

Application connection dropping across Fortinet IPSEC Site to Site VPN

Have a FortiWifi 60 CM and a 110C with VPN between them. Previously had the same site to use using Watchguard appliances with no issues. Now we're getting disconnects with MAS 200. Fortinet blamed the ...
CRN

Fortinet Hacks Led To 20,000 FortiGate Devices Breached: Report

The attacks by a China-linked hacking group involved exploitation of a zero-day vulnerability and occurred in 2022 and 2023, according to the Dutch military intelligence service. Attacks by a ...
TipRanks on MSN

Fortinet announces results of Total Economic Impact study

Fortinet (FTNT) announced the results of a new Total Economic Impact study, conducted by Forrester Consulting and commissioned by Fortinet. The ...