Lucene search
K

11 matches found

The Hacker News
The Hacker News
added 2026/03/19 2:25 p.m.11 views

ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More

ThreatsDay Bulletin is back on The Hacker News, and this week feels off in a familiar way. Nothing loud, nothing breaking everything at once. Just a lot of small things that shouldn’t work anymore but still do. Some of it looks simple, almost sloppy, until you see how well it lands. Other bits fe...

9.8CVSS6.7AI score0.99999EPSS
Exploits42
GithubExploit
GithubExploit
added 2025/04/11 1:52 p.m.524 views

Exploit for Authentication Bypass Using an Alternate Path or Channel in Fortinet Fortiproxy

CVE-2024-55591: FortiOS Authentication Bypass If you’re r...

9.8CVSS10AI score0.98259EPSS
Exploits9
GithubExploit
GithubExploit
added 2025/01/29 7:39 p.m.460 views

Exploit for Authentication Bypass Using an Alternate Path or Channel in Fortinet Fortiproxy

Proof of Concept for CVE-2024-55591 Exploit This script is a...

9.8CVSS10AI score0.98259EPSS
Exploits9
GithubExploit
GithubExploit
added 2025/01/27 6:25 a.m.367 views

Exploit for Authentication Bypass Using an Alternate Path or Channel in Fortinet Fortiproxy

CVE-2024-55591 A Fortinet FortiOS Authentication Bypass Proof...

9.8CVSS10AI score0.98259EPSS
Exploits9
GithubExploit
GithubExploit
added 2025/01/24 8:29 p.m.457 views

Exploit for Authentication Bypass Using an Alternate Path or Channel in Fortinet Fortiproxy

CVE-2024-55591 PoC This repository contains an PoC Proof of...

9.8CVSS10AI score0.98259EPSS
Exploits9
GithubExploit
GithubExploit
added 2025/01/16 7:26 a.m.364 views

Exploit for Authentication Bypass Using an Alternate Path or Channel in Fortinet Fortiproxy

CVE-2024-55591 A Fortinet FortiOS Authentication Bypass Vulner...

9.8CVSS9.8AI score0.98259EPSS
Exploits9
Circl
Circl
added 2025/01/14 2:26 p.m.9 views

CVE-2024-55591

creationtimestamp| type| source ---|---|--- 2025-01-14 14:26:33+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113827171069136576 2025-01-14 14:48:33+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/113827257320064030 2025-01-14 15:13:34+00:00| seen|...

9.8CVSS7.1AI score0.98259EPSS
Exploits9References201
CVE
CVE
added 2025/01/14 2:8 p.m.580 views

CVE-2024-55591

CVE-2024-55591 is a critical authentication bypass affecting FortiOS and FortiProxy. Public PoCs describe remote exploitation via WebSocket/Telnet management interfaces to gain super-admin privileges without valid credentials. Affected versions include FortiOS 7.0.0–7.0.16 and FortiProxy 7.0.0–7....

9.8CVSS9.6AI score0.98259EPSS
In wildExploits9References2Affected Software2
Vulnrichment
Vulnrichment
added 2025/01/14 2:8 p.m.26 views

CVE-2024-55591

An Authentication Bypass Using an Alternate Path or Channel vulnerability CWE-288 affecting FortiOS version 7.0.0 through 7.0.16 and FortiProxy version 7.0.0 through 7.0.19 and 7.2.0 through 7.2.12 allows a remote attacker to gain super-admin privileges via crafted requests to Node.js websocket...

9.8CVSS9.6AI score0.98259EPSS
Exploits9References1
ATTACKERKB
ATTACKERKB
added 2025/01/14 12:0 a.m.96 views

CVE-2024-55591

An Authentication Bypass Using an Alternate Path or Channel vulnerability CWE-288 affecting FortiOS version 7.0.0 through 7.0.16 and FortiProxy version 7.0.0 through 7.0.19 and 7.2.0 through 7.2.12 allows a remote attacker to gain super-admin privileges via crafted requests to Node.js websocket...

9.8CVSS10AI score0.98259EPSS
In wildExploits9References2
Tenable Nessus
Tenable Nessus
added 2025/01/14 12:0 a.m.33 views

Fortinet Fortigate Authentication bypass in Node.js websocket module and CSF requests (FG-IR-24-535)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the FG-IR-24-535 advisory. - An Authentication Bypass Using an Alternate Path or Channel vulnerability CWE-288 affecting FortiOS 7.0.0 through...

9.8CVSS8.7AI score0.98259EPSS
Exploits9References3
Rows per page
Query Builder