Bleeping Computer

Fortinet warns of 5-year-old FortiOS 2FA bypass still exploited in attacks

Fortinet has warned customers that threat actors are still actively exploiting a critical FortiOS vulnerability that allows them to bypass two-factor authentication (2FA) when targeting vulnerable ...

Over 10K Fortinet firewalls exposed to actively exploited 2FA bypass

Over 10,000 Internet-exposed Fortinet firewalls are still vulnerable to attacks exploiting a five-year-old two-factor ...
Dark Reading

Actively Exploited Fortinet Zero-Day Gives Attackers Super-Admin Privileges

Fortinet has patched an actively exploited zero-day authentication bypass flaw affecting its FortiOS and FortiProxy products, which attackers have been exploiting to gain super-administrative access ...
ITWire

Critical vulnerabilities in multiple Fortinet products - FortiCloud SSO Login Authentication Bypass [CRITICAL ALERT]

Fortinet has identified multiple critical vulnerabilities in a number of Fortinet Products, and this alert is rated as CRITICAL, so please read on! Security in today's world can NEVER be taken lightly ...
heise online

Patch now! Attackers bypass authentication in Fortinet products

If SSO login is enabled in FortiOS, FortiProxy, FortiSwitchManager, and FortiWeb, systems are vulnerable. Currently, attackers are exploiting two “critical” vulnerabilities in this context and ...