Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
eupolicy.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This Mastodon server is a friendly and respectful discussion space for people working in areas related to EU policy. When you request to create an account, please tell us something about you.

Administered by:

Server stats:

217
active users

eupolicy.social: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.8

#fortimanager

0 posts0 participants0 posts today
Manuel 'HonkHase' Atug<p>Hop-Skip-FortiJump-FortiJump-Higher - Fortinet FortiManager CVE-2024-47575</p><p>"The low complexity of these <a href="https://chaos.social/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>vulnerabilities</span></a> brings into question the overall quality of the <a href="https://chaos.social/tags/FortiManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FortiManager</span></a> codebase...<br>As far as we can make out, Fortinet just patched a chunk of irrelevant (dead?) code and left the actual <a href="https://chaos.social/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>vulnerability</span></a> alone, wide open for attackers."<br><a href="https://labs.watchtowr.com/hop-skip-fortijump-fortijumphigher-cve-2024-23113-cve-2024-47575/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">labs.watchtowr.com/hop-skip-fo</span><span class="invisible">rtijump-fortijumphigher-cve-2024-23113-cve-2024-47575/</span></a></p>
:mastodon: decio<p>...et ce n'est pas fini! </p><p>watchTowr fait le "teasing" sur le bad site de leur prochaine publication en conseillant carrément au détenteurs de Foritmanager exposé: "S'il vous plaît, retirez le d'Internet *même s'il est entièrement corrigé"</p><p>Le correctif pour la vulnérabilité « FortiJump » dans la plateforme de gestion FortiManager de Fortinet pourrait ainsi ne pas avoir complètement résolu le problème. Malgré une mise à jour récente, des preuves montrent que la vulnérabilité CVE-2024-47575 est encore exploitable, ce qui expose potentiellement 62 000 instances de FortiManager connectées à Internet selon Cyble threat intelligence.<br>⬇️ <br>"FortiManager May Still Be Vulnerable Despite ‘FortiJump’ Patch<br>The FortiJump vulnerability in Fortinet FortiManager may not have been completely fixed by last month's patch. Users are urged to apply mitigations."<br>👇 <br><a href="https://thecyberexpress.com/fortimanager-vulnerable-fortijump-patch/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thecyberexpress.com/fortimanag</span><span class="invisible">er-vulnerable-fortijump-patch/</span></a></p><p><a href="https://infosec.exchange/tags/CyberVeille" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberVeille</span></a><br><a href="https://infosec.exchange/tags/CVE_2024_47575" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CVE_2024_47575</span></a><br><a href="https://infosec.exchange/tags/Fortinet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Fortinet</span></a> <a href="https://infosec.exchange/tags/FortiJump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FortiJump</span></a> <a href="https://infosec.exchange/tags/Fortimanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Fortimanager</span></a></p>
Paul Shread<p>A little late for Halloween but just as scary: Nearly 1 million Fortinet and SonicWall devices with actively exploited vulnerabilities are exposed on the internet. <br><a href="https://masto.ai/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://masto.ai/tags/NetworkSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NetworkSecurity</span></a> <a href="https://masto.ai/tags/Fortinet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Fortinet</span></a> <a href="https://masto.ai/tags/FortiJump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FortiJump</span></a> <a href="https://masto.ai/tags/FortiManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FortiManager</span></a> <a href="https://masto.ai/tags/SonicWall" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SonicWall</span></a> <a href="https://masto.ai/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://masto.ai/tags/Ransomware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ransomware</span></a> <a href="https://masto.ai/tags/Cyberattacks" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cyberattacks</span></a> <a href="https://masto.ai/tags/ThreatIntelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ThreatIntelligence</span></a> <a href="https://masto.ai/tags/Vulnerabilities" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Vulnerabilities</span></a> </p><p><a href="https://thecyberexpress.com/vulnerable-fortinet-sonicwall-devices-exposed/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thecyberexpress.com/vulnerable</span><span class="invisible">-fortinet-sonicwall-devices-exposed/</span></a></p>
Erik Jonker<p>Kwetsbaarheid ontdekt in Fortinet FortiManager.<br><a href="https://advisories.ncsc.nl/advisory?id=NCSC-2024-0423" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">advisories.ncsc.nl/advisory?id</span><span class="invisible">=NCSC-2024-0423</span></a><br><a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.social/tags/fortinet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fortinet</span></a> <a href="https://mastodon.social/tags/fortimanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fortimanager</span></a> <a href="https://mastodon.social/tags/NCSC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NCSC</span></a>-2024-0423</p>
CERT-Bund<p>❗️ <a href="https://social.bund.de/tags/CERTWarnung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CERTWarnung</span></a> ❗️<br>In <a href="https://social.bund.de/tags/FortiManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FortiManager</span></a> von Fortinet wurde eine Zero-Day <a href="https://social.bund.de/tags/Schwachstelle" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Schwachstelle</span></a> geschlossen, die seit Juni ausgenutzt wird. Eine Kompromittierung ist zu prüfen. Kunden sollten unverzüglich ihre Geräte absichern. <a href="https://social.bund.de/tags/PatchNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PatchNow</span></a> <br><a href="https://www.bsi.bund.de/SharedDocs/Cybersicherheitswarnungen/DE/2024/2024-282848-10Ub2.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bsi.bund.de/SharedDocs/Cybersi</span><span class="invisible">cherheitswarnungen/DE/2024/2024-282848-10Ub2.html</span></a></p>
ExploreLive feeds
About