MFA no protection against new Fortinet bug CVE-2023-27997
www.thestack.technology
"It is a pre-auth RCE [and] has been proven to be exploitable in a consistent manner; we found it during a Red Team engagement and have exploited it remotely..."

Reminder for all to upgrade your Fortis ASAP!

  • @OscillonEnglish
    41 year ago

    Another day, another Fortigate CVE 😬

    • @[email protected]MEnglish
      21 year ago

      So frustrating… I have a fleet of around 40 devices I have to update with coordination of each site.

  • borariEnglish
    41 year ago

    Ah, I had posted this over in [email protected], but I totally forgot to cross-post it over here! It’s going to take me a while to remember the communities on lemmy that are relevant and active.

    But yeah, it’s a pre-auth vulnerability, so definitely patch up asap!