Critical FortiOS-Bug (Feb. 8., 2024)

Posted on 2024-02-08 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]A very brief note, which was also pointed out to me by a blog reader. Forti has re-released all FortiOS versions on February 8, 2024. The release notes do not say what has been fixed in these versions. The reader confirmed my suspicion off the record that there is another critical SSLVPN bug.

Advertising

Nothing is currently being published to prevent attackers from exploiting the vulnerability. The colleagues from Bleeping Computer have published this article with a list of updates.

A second reader wrote to me (with reference to this reddit.com post): There are firmware upgrades for Fortinet down to version 6.2 (which is actually no longer supported at all). What exactly is patched is unclear, but often the release notes with the security details about vulnerabilities are only filled a few days later by Fortinet.

Advertising
This entry was posted in Security, Software and tagged , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: Please note the rules for commenting on the blog (first comments and linked posts end up in moderation, I release them every few hours, I rigorously delete SEO posts/SPAM).