Скачать или смотреть Recent Discoveries Highlight Critical Vulnerabilities in Fortinet’s FortiOS From 6.0 through 7.4.2,

In a crucial cybersecurity development, Fortinet, a leader in broad, integrated, and automated cybersecurity solutions, has announced the discovery of multiple critical vulnerabilities within its flagship operating system, FortiOS. This operating system is the backbone of Fortigate SSL VPNs, a widely used solution for secure remote access.

One of the most alarming vulnerabilities uncovered is identified as CVE-2024-21762, an out-of-bounds write flaw within the SSL VPN daemon (sslvpnd) of FortiOS. This particular vulnerability is especially concerning due to its ability to allow remote, unauthenticated attackers to execute arbitrary code or commands on devices running the vulnerable versions of FortiOS, simply by sending specially crafted HTTP requests to devices where SSL VPN is enabled.

What amplifies the severity of this issue is the indication from Fortinet that CVE-2024-21762 is “potentially being exploited in the wild.” This suggests that attackers may already be leveraging this vulnerability to compromise systems and networks that rely on Fortinet’s technology for security. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has also acknowledged the gravity of this situation by adding CVE-2024-21762 to their Known Exploited Vulnerabilities (KEV) catalog, underscoring the real-world threat posed by this vulnerability.

Affected versions of FortiOS span a wide range, from 6.0 through to the latest, 7.4.2, covering a significant portion of Fortinet’s install base. FortiProxy, a related product, is also affected across multiple versions. The breadth of impacted versions suggests a high number of internet-facing devices could be vulnerable, with estimates suggesting up to 150,000 devices could be at risk.

The revelation of these vulnerabilities is a stark reminder of the ever-present and evolving threat landscape in cybersecurity. It underscores the critical importance of maintaining up-to-date systems and adheres to cybersecurity best practices to mitigate potential risks.

Fortinet has responded swiftly to these discoveries by releasing security advisories and updates to address the vulnerabilities. Organizations using Fortinet’s FortiOS and FortiProxy are strongly advised to review the advisories and apply the necessary updates without delay to protect their networks from potential exploitation.

As the digital world continues to grow, so does the sophistication of cyber threats. This incident highlights the ongoing cat-and-mouse game between cybersecurity professionals and threat actors. It serves as a call to action for continuous vigilance, regular system updates, and adherence to cybersecurity best practices to safeguard against such vulnerabilities.

For more detailed information and to access the security advisories, users and administrators are encouraged to visit Fortinet’s official advisory page and CISA’s alerts section.

For further details, please visit the original advisories by Fortinet and CISA, and stay informed about the latest cybersecurity developments .