FortiNet – Page 8 – TheCyberThrone

Fortinet Command Injection Vulnerability

An authenticated attacker could execute arbitrary commands as the root user on the underlying system via the SAML server configuration page. The vulnerability impacts Fortinet FortiWeb versions 6.3.11 and earlier, an authenticated…

PravinKarthik August 17, 2021

Forti Guard releases Security Update

Fortiguard released a security update for Forti Manager and Forti Analyzer to address an issue that provides a direct access to the root user which could lead to remote code…

PravinKarthik July 20, 2021

FortiWeb WAF Flaw

Fortinet has recently found a high-severity vulnerability (CVE-2021-22123) affecting its FortiWeb WAF, a remote, authenticated attacker can exploit it to execute arbitrary commands via the SAML server configuration page. An…

PravinKarthik June 25, 2021

Forti bugs under Active APT Attack

The FBI today issued a flash alert warning that so-called advanced persistent threat actors are exploiting vulnerabilities in cybersecurity appliances from Fortinet Inc. An APT group has exploited a Fortinet…

PravinKarthik May 28, 2021

APT Hits FortiOS

The FBI and the CISA are warning that APT nation-state actors are actively exploiting known security vulnerabilities in the Fortinet FortiOS cybersecurity operating system, affecting the company’s SSL VPN products.…

PravinKarthik April 3, 2021

FortiNet Vulnerability

Fortinet has addressed four vulnerabilities in FortiWeb web application firewalls The first vulnerability, tracked as CVE-2020-29015, is a blind SQL injection that resides in the FortiWeb user interface. The flaw could be exploited…

PravinKarthik February 5, 2021

FortiNet WAF Vulnerability

Researchers found multiple serious vulnerabilities in Fortinet’s FortiWeb web application firewall (WAF) that could be exploited by attackers to hack into corporate networks. The flaws, tracked as CVE-2020-29015, CVE-2020-29016, CVE-2020-29018,…

PravinKarthik January 7, 2021