Bleeping Computer

Fortinet fixes critical RCE flaws in FortiNAC and FortiWeb

FortiWeb is a web application firewall (WAF) solution designed to protect web apps and API from cross-site scripting (XSS), SQL injection, bot attacks, DDoS (distributed denial of service), and other ...
Bleeping Computer

New Fortinet FortiWeb hacks likely linked to public RCE exploits

Multiple Fortinet FortiWeb instances recently infected with web shells are believed to have been compromised using public exploits for a recently patched remote code execution (RCE) flaw tracked as ...
CRN

Fortinet: ’Critical’ FortiWeb Vulnerability Exploited In Attacks

The cybersecurity vendor confirmed Friday that the flaw has been ‘exploited in the wild on FortiWeb.’ Fortinet confirmed Friday that a critical-severity vulnerability affecting its web application ...
heise online

Patchday Fortinet: Unauthorized access to firewalls possible

Attackers can attack and access Fortinet firewalls. The provider of IT security solutions has also closed other vulnerabilities in various products. According to a warning message, a “critical” ...
heise online

Fortinet closes security leaks in several products

Fortinet has released security updates for several products. They close security gaps, some of which have been classified as critical risks. The most serious is a security vulnerability in FortiWeb.