#CVE202423113

Thousands of Fortinet instances vulnerable to actively exploited flaw

October 14, 2024 by Xynik

October 14, 2024 at 08:36AM Over 86,000 Fortinet instances remain vulnerable to a critical flaw (CVE-2024-23113) actively exploited since last week, mainly in Asia. The vulnerability, with a high severity rating, affects various Fortinet products and requires urgent updates or mitigations as recommended by Fortinet to ensure security against potential exploits. ### Meeting Takeaways: Fortinet … Read more

CISA says critical Fortinet RCE flaw now exploited in attacks

October 9, 2024 by Xynik

October 9, 2024 at 06:11PM CISA announced that attackers are exploiting a critical FortiOS remote code execution vulnerability (CVE-2024-23113), allowing unauthenticated access to unpatched devices. U.S. federal agencies must secure their FortiOS devices within three weeks. Fortinet recommends removing access to the vulnerable fgfmd daemon as a mitigation measure. ### Meeting Takeaways: 1. **Critical Vulnerability … Read more