Authentication

Fortinet Critical Authentication Bypass Vulnerability has been exploited.

Malicious News

Oct 12, 2022 — 1 min read

Fortinet on Monday published an advisory confirming that this vulnerability has been exploited in the wild.

“Fortinet is aware of an instance where the vulnerability was exploited and recommended immediately validating your system against the following indicator of compromise in the device logs”.

Earlier this month reports began circulating that Fortinet communicated directly with customers about a critical vulnerability in its FortiOS and FortiProxy products.

This vulnerability CVE-2022-40684 with a (CVSS score 9.6) deals with an authentication bypass using an alternate path or channel in FortiOS, FortiProxy and FortiSwitchManager may allow an unauthenticated attacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.

Affected Products

FortiOS version 7.2.0 – 7.2.1
FortiOS version 7.0.0 – 7.2.1
FortiProxy version 7.20
FortiProxy version 7.0.0 – 7.0.6
FortiSwitchManager version 7.2.0
FortiSwitchManager version 7.0.0

Updates

Please upgrade to FortiOS version 7.2.2 or above
Please upgrade to FortiOS version 7.0.7 or above
Please upgrade to FortiProxy version 7.2.1 or above
Please upgrade to FortiProxy version 7.0.7 or above
Please upgrade to FortiSwitchManager version 7.2.1 or above

CISA Emergency Directive to Federal Agencies Regarding Ivanti Zero-Day Exploits

In a recent development, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive on Friday, urging Federal Civilian Executive Branch (FCEB) agencies to implement mitigations against two actively exploited zero-day flaws found in Ivanti Connect Secure (ICS) and Ivanti Policy Secure (IPS) products. The vulnerabilities, namely

Admin Takeover Flaw In Synology DiskStation Manager

A vulnerability has been identified in Synology's DiskStation Manager (DSM), capable of being exploited to uncover an administrator's password and seize control of the account remotely. According to Sharon Brizinov from Claroty's Team82 in a report on Tuesday, "Under some rare conditions, an attacker could leak enough information to restore

How to Boost Your Security with a Password Manager

Introduction Are you tired of keeping track of all your passwords? Do you have trouble remembering which combination goes with what account? Enter the password manager. A password manager is a software program that securely stores and manages all your login information for various websites and applications. With just one

7 Places where malware can hide

Malware can hide in various places on a computer or network. Here are some common locations where malware may hide: 1. System files: Malware can disguise itself as legitimate system files or inject malicious code into existing files. 2. Temporary folders: Malware often uses temporary folders to hide and execute