Collaborate Disseminate
A critical RCE vulnerability (CVE-2022-42475) in Fortinet’s operating system, FortiOS, is being exploited by attackers, reportedly by a ransomware group. “Fortinet is aware of an instance where this vulnerability was exploited in the wild,&… Continue reading Critical FortiOS pre-auth RCE vulnerability exploited by attackers (CVE-2022-42475)
Horizon3.ai researchers have released a PoC exploit for CVE-2022-40684, the authentication bypass vulnerability affecting Fortinet‘s firewalls and secure web gateways, and soon after exploitation attempts started rising. “[On Thursday], the… Continue reading Researchers release PoC for Fortinet firewall flaw, exploitation attempts mount
In 2021, threat actors aggressively exploited newly disclosed critical software vulnerabilities to hit a broad set of targets worldwide, says the latest advisory published by the US Cybersecurity and Infrastructure Security Agency. Most exploited vulne… Continue reading The 15 most exploited vulnerabilities in 2021
By Sudais Asif
A hacker using the alias “pumpedkicks” has published a large list of one-line exploits of around 50,000 Fortinet FortiGate IPs. Find out what happened.
This is a post from HackRead.com Read the original post: Hackers leak login credentia… Continue reading Hackers leak login credentials of vulnerable Fortinet SSL VPNs
Cisco and Fortinet have released security advisories confirming that some of the exploits leaked by the Shadow Brokers work as intended. The entity released the batch as proof that the rest of the data they are selling (and have allegedly stolen from the Equation Group threat actor) is worth buying. Cisco’s reaction According to Omar Santos, the Principal Engineer in the Cisco Product Security Incident Response Team, the leaked data contains three references to exploits … More → Continue reading Cisco, Fortinet validate exploits leaked by the Shadow Brokers