tldrdaily.news logo
Tag

Cve 2024 21762

All articles tagged with #cve 2024 21762

cybersecurity1 year ago

"Fortinet FortiOS Bug CVE-2024-21762 Affects 150,000 Internet-Facing Devices"

A critical vulnerability, CVE-2024-21762, in Fortinet FortiOS SSL VPN could potentially impact 150,000 exposed devices, with the majority located in the United States. The vulnerability, which allows for remote code execution, has been actively exploited in attacks in the wild. Fortinet has recommended disabling SSL VPN as a workaround and has provided a list of impacted versions and available solutions. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added this vulnerability to its Known Exploited Vulnerabilities catalog, and researchers continue to monitor the situation.

via Security Affairs|
#cve-2024-21762#cyberattack#cybersecurity
cybersecurity1 year ago

"Fortinet Flaw Exposes 150,000 Devices to Critical Vulnerability"

Approximately 150,000 Fortinet FortiOS and FortiProxy secure web gateway systems are vulnerable to CVE-2024-21762, a critical security issue that allows code execution without authentication. The vulnerability is actively being exploited by attackers, with over 24,000 vulnerable devices in the United States alone. Companies are advised to check their SSL VPN systems for vulnerability and take necessary mitigation steps to protect their networks.

via BleepingComputer|
#cve-2024-21762#cybersecurity#exploitation
cybersecurity1 year ago

"Fortinet's Ongoing Battle: Exploited RCE Flaws and Urgent Patching"

CISA confirms active exploitation of a critical remote code execution (RCE) bug (CVE-2024-21762) in Fortinet's FortiOS operating system, urging immediate patching or SSL VPN disabling to mitigate risks. Fortinet's confusing disclosure process regarding other RCE vulnerabilities (CVE-2024-23108 and CVE-2024-23109) in FortiSIEM was clarified, emphasizing the need to secure all Fortinet devices due to the high likelihood of exploitation by malicious actors for cyber espionage and ransomware attacks.

via BleepingComputer|
#cisa#cve-2024-21762#cybersecurity