Read the original article at https://www.cisa.gov/news-events/alerts/2023/12/14/fortinet-releases-security-updates-multiple-products
Fortinet has released security updates to address vulnerabilities in multiple Fortinet products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.
CISA encourages users and administrators to review the following advisories and apply necessary updates:
- FG-IR-23-196: Double free in cache management
- FG-IR-22-038: FortiMail, FortiNDR, FortiRecorder, FortiSwitch, FortiVoice – Cross-site scripting forgery (CSRF) in HTTPd CLI console
- FG-IR-23-138: FortiOS, FortiProxy – Format String Bug in HTTPSd
Read the original article at https://www.cisa.gov/news-events/alerts/2023/12/14/fortinet-releases-security-updates-multiple-products