Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit

Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit

/in

Fortinet has revealed that threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to breach the devices was patched.
The attackers are believed to have leveraged known and now-patched security flaws, including, but not limited to, CVE-2022-42475, CVE-2023-27997, and CVE-2024-21762.
“A threat actor used a known

The Hacker News – ​Read More

Using Third-Party ID Providers Without Losing Zero TrustUsing Third-Party ID Providers Without Losing Zero TrustRapid7 Reveals RCE Path in Ivanti VPN Appliance After Silent Patch Debacle