Lucene search
+L

FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials

🗓️ 10 Mar 2026 16:21:00Reported by The Hacker NewsType 
thn
 thn
🔗 thehackernews.com👁 15 Views

Threat actors exploit FortiGate appliances to steal service account credentials and network topology.

Related
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2025-59718
9 Dec 202517:20
attackerkb
ATTACKERKB
CVE-2026-24858
27 Jan 202619:18
attackerkb
BDU FSTEC
The vulnerabilities of the FortiCloud SSO authentication function in FortiOS operating systems, FortiWeb web applications at the network layer, FortiProxy proxy servers for protecting against internet attacks, and the local management platform FortiSwitchManager, allow attackers to bypass existing security mechanisms.
10 Dec 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of the SAML Response Message Handler component in FortiOS operating systems, FortiWeb network layer for web applications, FortiProxy proxy server for protecting against internet attacks, and FortiSwitchManager local management platform allows attackers to bypass existing security mechanisms.
9 Jan 202600:00
bdu_fstec
BDU FSTEC
The vulnerability of the FortiCloud SSO authentication mechanism affects operating systems based on FortiOS, the Fortinet FortiManager device management software, the FortiAnalyzer event monitoring and analysis software, and the FortiProxy proxy server used for protecting against internet attacks. This vulnerability allows a perpetrator to gain unauthorized access to the device.
28 Jan 202600:00
bdu_fstec
Circl
CVE-2025-59718
9 Dec 202519:07
circl
Circl
CVE-2025-59719
9 Dec 202519:53
circl
Circl
CVE-2026-24858
27 Jan 202620:18
circl
CISA KEV Catalog
Fortinet Multiple Products Improper Verification of Cryptographic Signature Vulnerability
16 Dec 202500:00
cisa_kev
CISA KEV Catalog
Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability
27 Jan 202600:00
cisa_kev
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation