These Critical Bugs Could Allow Hackers to Break in Without Passwords: NCERT

Pakistan’s National Computer Emergency Response Team (National CERT) has warned that serious security flaws in widely used ...
GitHub

XiaomingX/cve-2024-21762-poc

CVE-2024-21762 是 Fortinet 公司的 FortiOS 和 FortiProxy 产品中的一个严重漏洞,存在于其 SSL VPN 组件中。该漏洞允许未经身份验证的远程攻击者通过特制的 HTTP 请求在目标系统上执行任意代码或命令,可能导致系统被完全控制。 危害: 由于该漏洞的存在,攻击者可以在 ...
techzine

Attackers exploit five-year-old Fortinet vulnerability

Fortinet warns of active attacks on a five-year-old vulnerability in FortiOS. The vulnerability makes it possible to bypass two-factor authentication on VPN connections, despite a patch having been ...
SecurityWeek

Fortinet Warns of New Attacks Exploiting Old Vulnerability

Fortinet last week warned that a five-year-old improper authentication flaw in FortiOS is once again in attackers’ crosshairs. Tracked as CVE-2020-12812, the exploited FortiOS vulnerability exists ...
GitHub

Fortigate CEF Logs - Graylog Content Pack

This project has been depricated. Please use https://github.com/seanthegeek/graylog-fortigate-syslog instead. Import the Content Pack into Graylog by navigating to ...
The Hacker News

Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability

Fortinet on Wednesday said it observed "recent abuse" of a five-year-old security flaw in FortiOS SSL VPN in the wild under certain configurations. The vulnerability in question is CVE-2020-12812 ...