Read the original article at https://www.cisa.gov/news-events/alerts/2023/11/14/fortinet-releases-security-updates-forticlient-and-fortigate
Fortinet has released security advisories addressing vulnerabilities in FortiClient and FortiGate. Cyber threat actors may exploit some of these vulnerabilities to take control of an affected system.
CISA encourages users and administrators to review the following Fortinet security advisories and apply the recommended updates:
- FG-IR-22-299: FortiClient (Windows) – Arbitrary file deletion from unprivileged users
- FG-IR-23-274: FortiClient (Windows) – DLL Hijacking via openssl.cnf
- FG-IR-23-385: curl and libcurl CVE-2023-38545 and CVE-2023-38546 vulnerabilities
Read the original article at https://www.cisa.gov/news-events/alerts/2023/11/14/fortinet-releases-security-updates-forticlient-and-fortigate