Tag: fortinet

CVE-2023-48788: Fortinet FortiClientEMS SQL Injection Deep Dive

Mar 21, 2024 2:35 PM

Tags: cve, fortinet, injection, sql

Introduction In a recent PSIRT, Fortinet acknowledged CVE-2023-48788 a SQL injection in FortiClient EMS that can lead to remote code execution. Forti… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/03/cve-2023-48788-fortinet-forticlientems-sql-injection-deep-dive/
Wi7Point und 10G-PoE-Switch von Fortinet – Netzwerksicherheitslösung mit Wi7-Integration

Mar 19, 2024 10:45 AM

Tags: access, fortinet, switch, wifi

First seen on security-insider.de Jump to article: www.security-insider.de/netzwerksicherheitsloesung-mit-wi-fi-7-integration-a-73c9dbfba67bdeda5d360428cb664ccc/
Fortinet fixes critical bugs in FortiOS, FortiProxy, and FortiClientEMS

Mar 15, 2024 1:45 PM

Tags: fortinet, update, vulnerability

Fortinet released security updates to address critical code execution vulnerabilities in FortiOS, FortiProxy, and FortiClientEMS. Fortinet this week h… First seen on securityaffairs.com Jump to article: securityaffairs.com/160440/security/fortinet-critical-bugs-fortios-fortiproxy-forticlientems.html
Fortinet Warns of Yet Another Critical RCE Flaw

Mar 14, 2024 10:29 PM

Tags: flaw, fortinet, rce, remote-code-execution

First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/fortinet-warns-of-yet-another-critical-rce-flaw
Critical FortiClient EMS vulnerability fixed, (fake?) PoC for sale (CVE-2023-48788)

Mar 14, 2024 3:29 PM

Tags: endpoint, fortinet, injection, sql, vulnerability

A recently fixed SQL injection vulnerability (CVE-2023-48788) in Fortinet’s FortiClient Endpoint Management Server (EMS) solution has apparently pique… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/03/14/cve-2023-48788-poc/
Fortinet FortiWLM Deep-Dive, IOCs, and the Almost Story of the Forti Forty

Mar 14, 2024 2:29 PM

Tags: fortinet, remote-code-execution, vulnerability

Earlier this year, soon after reproducing a remote code execution vulnerability for the Fortinet FortiNAC, I was on the hunt for a set of new research… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/03/fortinet-fortiwlm-deep-dive-iocs-and-the-almost-story-of-the-forti-forty/
Fortinet Patches Critical Bug in FortiClient EMS

Mar 14, 2024 11:29 AM

Tags: fortinet

First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/fortinet-patches-critical-bug/
Fortinet warns of critical RCE bug in endpoint management software

Mar 13, 2024 8:29 PM

Tags: endpoint, fortinet, rce, remote-code-execution, software, vulnerability

Fortinet patched a critical vulnerability in its FortiClient Enterprise Management Server (EMS) software that can allow attackers to gain remote code … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fortinet-warns-of-critical-rce-bug-in-endpoint-management-software/
New Fortinet FortiOS Flaw Lets Attacker Execute Arbitrary Code

Mar 13, 2024 6:29 PM

Tags: flaw, fortinet, vulnerability

Fortinet has disclosed a critical vulnerability in its FortiOS and FortiProxy captive portal systems, potentially allowing attackers to execute arbitr… First seen on gbhackers.com Jump to article: gbhackers.com/new-fortinet-fortios-flaw/
Siemens RuggedCom Devices Impacted By 45 Fortinet Vulns

Mar 12, 2024 4:46 PM

Tags: fortinet

First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/35637/Siemens-RuggedCom-Devices-Impacted-By-45-Fortinet-Vulns.html
Sichere IT-Infrastruktur – Fortinet-Lösung bündelt 5G, KI und Zero Trust

Mar 12, 2024 11:46 AM

Tags: 5G, ai, fortinet, infrastructure, zero-trust

First seen on security-insider.de Jump to article: www.security-insider.de/fortinet-loesung-buendelt-5g-ki-und-zero-trust-a-10ff58b1223035bf59fe7d6427433727/
Ivanti- und Fortinet-Lecks: Weiter viele Geräte verwundbar auch CISA betroffen

Mar 11, 2024 5:46 PM

Tags: cisa, fortinet, ivanti

Unter den Lecks in FortiNet-Produkten leiden weiter über 140.000 Systeme, 2000 davon in Deutschland. Auch Ivanti-Gateways der US-Cyberbehörde wurden a… First seen on heise.de Jump to article: www.heise.de/news/Ivanti-und-Fortinet-Lecks-Weiter-viele-Geraete-verwundbar-auch-CISA-betroffen-9651510.html
Critical Fortinet flaw may impact 150,000 exposed devices

Mar 8, 2024 10:13 PM

Tags: cve, data-breach, flaw, fortinet, vulnerability

Scans on the public web show that approximately 150,000 Fortinet FortiOS and FortiProxy secure web gateway systems are vulnerable to CVE-2024-21762, a… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-fortinet-flaw-may-impact-150-000-exposed-devices/
Fortinet vs Palo Alto NGFWs: Complete 2024 Comparison

Feb 14, 2024 5:27 PM

Tags: fortinet

First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/products/fortinet-vs-palo-alto-networks/
CISA warns Fortinet zero-day vulnerability under attack

Feb 13, 2024 10:29 AM

Tags: attack, cisa, exploit, fortinet, vulnerability, zero-day

CISA alerted federal agencies that a critical zero-day vulnerability in FortiOS is being actively exploited, though Fortinet has yet to confirm report… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366569675/CISA-warns-Fortinet-zero-day-vulnerability-under-attack
VulnRecap 2/12/24: Ivanti, JetBrains, Fortinet, Linux Issues

Feb 13, 2024 1:53 AM

Tags: fortinet, ivanti, linux

First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-february-12-2024/
Critical Fortinet FortiOS flaw exploited in the wild (CVE-2024-21762)

Feb 12, 2024 9:53 PM

Tags: cve, exploit, flaw, fortinet, remote-code-execution, vulnerability

Fortinet has patched critical remote code execution vulnerabilities in FortiOS (CVE-2024-21762, CVE-2024-23313), one of which is >>potentially
Double Trouble For Fortinet Customers As Pair Of Critical Vulns Found in FortiSIEM

Feb 12, 2024 5:54 PM

Tags: fortinet

First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/35496/Double-Trouble-For-Fortinet-Customers-As-Pair-Of-Critical-Vulns-Found-in-FortiSIEM.html
Fortinet Warns Of New FortiOS Zero Day

Feb 12, 2024 5:54 PM

Tags: fortinet, zero-day

First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/35512/Fortinet-Warns-Of-New-FortiOS-Zero-Day.html
Fortinet, Ivanti Keep Customers Busy With Yet More Critical Bugs

Feb 12, 2024 5:34 PM

Tags: exploit, fortinet, ivanti, vulnerability

Brand-new vulnerabilities from both vendors this week ” one exploited in the wild ” add to a steady stream of critical security issues in the security… First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/fortinet-ivanti-keep-customers-busy-with-yet-more-critical-bugs
New Fortinet RCE bug is actively exploited, CISA confirms

Feb 12, 2024 5:34 AM

Tags: cisa, exploit, fortinet, rce, remote-code-execution

First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-fortinet-rce-bug-is-actively-exploited-cisa-confirms/
New Fortinet RCE flaw in SSL VPN likely exploited in attacks

Feb 12, 2024 5:34 AM

Tags: attack, exploit, flaw, fortinet, rce, remote-code-execution, vpn

First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-fortinet-rce-flaw-in-ssl-vpn-likely-exploited-in-attacks/
Meet Faust: the Latest Phobos Ransomware Variant

Feb 12, 2024 5:34 AM

Tags: fortinet, ransomware

In a recent discovery by Fortinet FortiGuard Labs, a new iteration of the Phobos ransomware family, known as Faust, has been detected in the wild. Mor… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/faust-phobos-ransomware/
CVE-2024-21762: Critical Flaw in FortiOS SSL VPN Exploited

Feb 12, 2024 5:34 AM

Tags: cve, exploit, flaw, fortinet, vpn, vulnerability

Fortinet has recently uncovered a critical security vulnerability, designated as CVE-2024-21762, within its FortiOS SSL VPN software. This flaw, with … First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-21762-fortios-ssl-vpn/
3 Millionen gefährliche Zahnbürsten? Diese DDoS-Attacke gab es nicht

Feb 12, 2024 1:47 AM

Tags: cyberattack, ddos, fortinet

Eine Armee von Zahnbürsten soll kürzlich von Hackern für einen Cyberangriff auf ein Fortinet genutzt worden sein, hieß es in einem Zeitungsbericht. Do… First seen on t3n.de Jump to article: t3n.de/news/zahnbuersten-cyber-waffe-3-millionen-1606412/
AlgoSec bringt Update A32.60 für seine Multi-Cloud Management-Konsole

Feb 12, 2024 1:46 AM

Tags: cloud, fortinet, update

Neue Automatisierungsunterstützung für FQDN-Objekte (Fully Qualified Domain Name) unter Palo Alto Panorama, Fortinet FortiManager und Check Point. Dam… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/algosec-bringt-update-a32-60-fuer-seine-multi-cloud-management-konsole/a36069/
Twin Max-Severity Bugs Open Fortinet’s SIEM to Code Execution

Feb 10, 2024 1:42 PM

Tags: cvss, cybersecurity, flaw, fortinet, siem, vulnerability

Full 10s on the CVSS vulnerability severity scale have been assigned to two flaws discovered in Fortinet’s FortiSIEM cybersecurity operations platform… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/fortinet-fortisiem-hit-with-twin-max-severity-bugs
Product Watch: New Fortinet Tools Help Enforce Policy By Device, Reputation

Oct 18, 2012 1:20 PM

Tags: fortinet, tool

First seen on http: Jump to article: darkreading.com/risk-management/167901115/security/security-management/240009230/product-watch-new-fortinet-tools-help-enforce-policy-by-device-reputation.html
Fortinet, Check Point Dive After Weaker Than Expected Earnings: Fortinet (FTNT) stock plunged nearly 18% early W…

Oct 18, 2012 5:20 AM

Tags: fortinet

First seen on http: Jump to article: bit.ly/QZqFr3
FortiNet Unveils New FortiOS 5.0 for BYOD Management, Security

Oct 17, 2012 11:20 PM

Tags: fortinet

First seen on http: Jump to article: t.co/mckIGGDH