Read the original article at https://www.cisa.gov/news-events/alerts/2024/04/09/fortinet-releases-security-updates-multiple-products
Fortinet released security updates to address vulnerabilities in multiple products, including OS and FortiProxy. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.
CISA encourages users and administrators to review the following advisories and apply necessary updates:
- FR-IR-23-345 FortiClientMac – Lack of configuration file validation
- FG-IR-23-493 FortiOS & FortiProxy – Administrator cookie leakage
- FG-IR-23-087 FortiClient Linux – Remote Code Execution due to dangerous nodejs configuration
Read the original article at https://www.cisa.gov/news-events/alerts/2024/04/09/fortinet-releases-security-updates-multiple-products