9621 Agnes Crossing, Lake Suzanneview, New Mexico Island 84604-9295.
Fortinet’s FortiOS and FortiProxy contain a critical vulnerability that an attacker could exploit to run proprietary code. Fortinet warns customers about a dangerous vulnerability in FortiOS and FortiProxy.
Fortinet’s FortiOS and FortiProxy contain a critical vulnerability that an attacker could exploit to run proprietary code.
Fortinet warns customers about a dangerous vulnerability in FortiOS and FortiProxy. This allows attackers to run their own code on the devices without authentication. Hackers can also compromise the functionality of vulnerable devices. The vulnerability is based on a buffer overflow bug and has the designation CVE-2023-25610, along with a score of 9.3. That officially makes the bug critical, which should give high priority to patching. At this point, hackers would not yet exploit the vulnerability in the wild.
The following products are affected:
Fortinet has updates for affected products. If, for one reason or another, you cannot install it right away, it’s a good idea to disable HTTP/HTTPS for the management interface and manually limit the number of IP addresses that can access vulnerable products.
Vulnerabilities that allow attackers to gain a foothold in a network without stolen credentials are popular. So rest assured that it won’t be long before criminals launch campaigns based on the vulnerability. Due to the critical nature of the bug, patching should be an absolute priority.
Source: IT Daily
As an experienced journalist and author, Mary has been reporting on the latest news and trends for over 5 years. With a passion for uncovering the stories behind the headlines, Mary has earned a reputation as a trusted voice in the world of journalism. Her writing style is insightful, engaging and thought-provoking, as she takes a deep dive into the most pressing issues of our time.
