A new vulnerability affecting all versions of Fortinet’s FortiManager device has been disclosed and is being actively exploited in the wild. The vulnerability enables an unauthorised actor to gain access to the FortiManager console (CVE-2024-47575).
All organisations using FortiManager devices should review their networks for uses of vulnerable instances and implement the mitigations advice as a matter of high priority.
More information can be found here: https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/vulnerability-in-fortinets-fortimanager
Comments