Security News > 2025 > January > Fortinet warns of auth bypass zero-day exploited to hijack firewalls

Fortinet warns of auth bypass zero-day exploited to hijack firewalls

2025-01-14 15:24

Attackers are exploiting a new authentication bypass zero-day vulnerability in FortiOS and FortiProxy to hijack Fortinet firewalls and breach enterprise networks. [...]

News URL

https://www.bleepingcomputer.com/news/security/fortinet-warns-of-auth-bypass-zero-day-exploited-to-hijack-firewalls/

#bypass #firewall #fortinet #zeroday

Related news

Miscreants 'mass exploited' Fortinet firewalls, 'highly probable' zero-day used (source)
Fortinet Warns of New Zero-Day Used in Attacks on Firewalls with Exposed Interfaces (source)
Patch procrastination leaves 50,000 Fortinet firewalls vulnerable to zero-day (source)
Fortinet warns of new zero-day exploited to hijack firewalls (source)
Fortinet discloses second firewall auth bypass patched in January (source)
Fortinet fixes FortiOS zero-day exploited by attackers for months (CVE-2024-55591) (source)
Configuration files for 15,000 Fortinet firewalls leaked. Are yours among them? (source)
Week in review: AWS S3 data encrypted without ransomware, data of 15k Fortinet firewalls leaked (source)
48,000+ internet-facing Fortinet firewalls still open to attack (source)
Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass and Firmware Exploits (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Fortinet		80	20	348	308	92	768

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.