Fortinet Releases Security Updates for Multiple Products
Cybersecurity and Infrastructure Security Agency sent this bulletin at 04/09/2024 03:03 PM EDT
You are subscribed to Cybersecurity Advisories for Cybersecurity and Infrastructure Security Agency. This information has recently been updated, and is now available.
04/09/2024 08:00 AM EDT
Fortinet released security updates to address vulnerabilities in multiple products, including OS and FortiProxy. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.
CISA encourages users and administrators to review the following advisories and apply necessary updates:
- FR-IR-23-345 FortiClientMac - Lack of configuration file validation
- FG-IR-23-493 FortiOS & FortiProxy - Administrator cookie leakage
- FG-IR-23-087 FortiClient Linux - Remote Code Execution due to dangerous nodejs configuration
This product is provided subject to this Notification and this Privacy & Use policy.