Lucene search
+L

6 matches found

thn
thn
added 2026/01/23 12:30 p.m.13 views

Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls

Fortinet has officially confirmed that it's working to completely plug a FortiCloud SSO authentication bypass vulnerability following reports of fresh exploitation activity on fully-patched firewalls. "In the last 24 hours, we have identified a number of cases where the exploit was to a device th...

9.8CVSS5.8AI score0.66322EPSS
Exploits1
thn
thn
added 2025/12/16 10:58 a.m.16 views

Fortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass

Threat actors have begun to exploit two newly disclosed security flaws in Fortinet FortiGate devices, less than a week after public disclosure. Cybersecurity company Arctic Wolf said it observed active intrusions involving malicious single sign-on SSO logins on FortiGate appliances on December 12...

9.8CVSS8AI score0.66322EPSS
Exploits1
cisa_kev
cisa_kev
added 2025/12/16 12:0 a.m.20 views

Fortinet Multiple Products Improper Verification of Cryptographic Signature Vulnerability

Fortinet FortiOS, FortiSwitchMaster, FortiProxy, and FortiWeb contain an improper verification of cryptographic signature vulnerability that may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML message. Please be aware that CVE-2025-59719...

9.8CVSS7.8AI score0.66322EPSS
In wildExploits1
circl
circl
added 2025/12/15 12:58 p.m.22 views

CVE-2025-57918

creationtimestamp| type| source ---|---|--- 2025-12-15 12:58:40+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/al25-019-vulnerabilities-impacting-fortinet-products-forticloud-sso-login-authentication-bypass-cve-2025-59718-cve-2025-59719...

7.1CVSS5.8AI score0.00135EPSS
Exploits0References1
thn
thn
added 2025/12/10 4:50 a.m.19 views

Fortinet, Ivanti, and SAP Issue Urgent Patches for Authentication and Code Execution Flaws

Fortinet, Ivanti, and SAP have moved to address critical security flaws in their products that, if successfully exploited, could result in an authentication bypass and code execution. The Fortinet vulnerabilities affect FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager and relate to a case of...

9.9CVSS9.4AI score0.66322EPSS
Exploits1
nessus
nessus
added 2025/12/09 12:0 a.m.97 views

Fortinet Fortigate SSO Login Authentication Bypass (FG-IR-25-647)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the FG-IR-25-647 advisory. - An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0,... CVE-2025-59719 - ...

9.8CVSS8AI score0.66322EPSS
Exploits1References3
Rows per page
Query Builder