Lucene search
+L

8 matches found

thn
thn
added 2026/01/23 12:30 p.m.13 views

Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls

Fortinet has officially confirmed that it's working to completely plug a FortiCloud SSO authentication bypass vulnerability following reports of fresh exploitation activity on fully-patched firewalls. "In the last 24 hours, we have identified a number of cases where the exploit was to a device th...

9.8CVSS5.8AI score0.66322EPSS
Exploits1
githubexploit
githubexploit
added 2025/12/27 4:24 a.m.256 views

Exploit for Improper Verification of Cryptographic Signature in Fortinet Fortiproxy

CVEs: CVE-2025-59718 / CVE-2025-59719 Fortinet Poc Herramient...

9.8CVSS8.1AI score0.66322EPSS
Exploits1
cisa
cisa
added 2025/12/16 12:0 p.m.28 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-59718link is external Fortinet Multiple Products Improper Verification of Cryptographic Signature Vulnerability This type of vulnerability is a frequent atta...

9.8CVSS6.8AI score0.66322EPSS
In wildExploits1References6
thn
thn
added 2025/12/16 10:58 a.m.16 views

Fortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass

Threat actors have begun to exploit two newly disclosed security flaws in Fortinet FortiGate devices, less than a week after public disclosure. Cybersecurity company Arctic Wolf said it observed active intrusions involving malicious single sign-on SSO logins on FortiGate appliances on December 12...

9.8CVSS8AI score0.66322EPSS
Exploits1
circl
circl
added 2025/12/15 12:58 p.m.22 views

CVE-2025-57918

creationtimestamp| type| source ---|---|--- 2025-12-15 12:58:40+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/al25-019-vulnerabilities-impacting-fortinet-products-forticloud-sso-login-authentication-bypass-cve-2025-59718-cve-2025-59719...

7.1CVSS5.8AI score0.00135EPSS
Exploits0References1
vulncheck_kev
vulncheck_kev
added 2025/12/15 12:0 a.m.3 views

VulnCheck KEV: CVE-2025-59718

A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4.0 through 7.4.10, FortiProxy 7.2.0 through 7.2.14,...

9.8CVSS5.8AI score0.66322EPSS
In wildExploits1References16
thn
thn
added 2025/12/10 4:50 a.m.19 views

Fortinet, Ivanti, and SAP Issue Urgent Patches for Authentication and Code Execution Flaws

Fortinet, Ivanti, and SAP have moved to address critical security flaws in their products that, if successfully exploited, could result in an authentication bypass and code execution. The Fortinet vulnerabilities affect FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager and relate to a case of...

9.9CVSS9.4AI score0.66322EPSS
Exploits1
nessus
nessus
added 2025/12/09 12:0 a.m.97 views

Fortinet Fortigate SSO Login Authentication Bypass (FG-IR-25-647)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the FG-IR-25-647 advisory. - An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0,... CVE-2025-59719 - ...

9.8CVSS8AI score0.66322EPSS
Exploits1References3
Rows per page
Query Builder