Auth bypass bug in FortiOS, FortiProxy is exploited in the wild (CVE-2022-40684)

11 October 2022

After privately warning customers last week that they need to patch or mitigate CVE-2022-40684, a critical vulnerability affecting FortiOS, FortiProxy, and FortiSwitchManager, Fortinet has finally confirmed that it “is aware of an instance where this vulnerability was exploited.” But their advice to organizations to immediately check their systems for a specific indicator of compromise makes it sound like they believe more widespread attacks have happened or are happening. About CVE-2022-40684 CVE-2022-40684 is an authentication bypass vulnerability on vulnerable devices’ administrative interface that can be triggered by sending a specially crafted HTTP(S) requests.

Read full article on Help Net Security

Date:

11 October 2022

Categorie(s):

NEWS

Tag(s):

Auth, Fortinet, IT, News

New U.K. Law Bans Default Passwords on Smart Devices Starting April 202430 April 2024
Meet the New Exclusive AI Malware Analyst: Gemini 1.5 Pro30 April 2024
An Empty S3 Bucket Can Make Your AWS Bills Explode30 April 2024
Triangulation fraud: The costly scam hitting online retailers30 April 2024
Tracecat: Open-source SOAR30 April 2024