Fortinet warns of critical FortiCloud SSO login auth bypass flaws

Fortinet has released security updates to address two critical vulnerabilities in FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager that could allow attackers to bypass FortiCloud SSO ...
Cybernews

Fortinet firewalls under active attack, users urged to update now

Hackers are actively exploiting critical Fortinet FortiGate flaws to bypass SSO, steal configs, and hijack firewalls. CISA is ...
SecurityWeek

Fortinet Patches Critical Authentication Bypass Vulnerabilities

Fortinet patched two critical flaws in FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager leading to authentication bypass ...
The Hacker News

Fortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass

Attackers are exploiting two CVSS 9.8 FortiGate SSO authentication bypass flaws days after disclosure; Fortinet urges ...
SDxCentral

Fortinet Extends Cloud Security Into AWS CloudFormation

Fortinet extended its cloud security service offerings into Amazon Web Services (AWS) in a push that is similar to one made by the vendor toward Microsoft's Azure platform last month. For AWS, ...

Fortinet brings FortiGate-VM security to Nvidia BlueField-3 for AI factories

Fortinet VM, powered by the FortiOS operating system, offers next-generation firewall capabilities that secure hybrid, ...
Bleeping Computer

Exploits for pre-auth Fortinet FortiWeb RCE flaw released, patch now

Proof-of-concept exploits have been released for a critical SQLi vulnerability in Fortinet FortiWeb that can be used to achieve pre-authenticated remote code execution on vulnerable servers. FortiWeb ...
Dark Reading

Critical Fortinet FortiWeb WAF Bug Exploited in the Wild

A critical Fortinet FortiWeb vulnerability capable of remote code execution has been exploited in the wild. Because the vulnerability is capable of remote code execution in a pre-authentication state ...