A working exploit to bypass the authentication protocols in Fortinet devices is in the wild, which may let breaches reach your devices to do anything they want!
This critical bug is prevailing in FortiProxy, FortiSwitchManager, and virtually in all devices running on FortiOS. Though the maker released a patch to fix it, it’s the end customers who need to apply it to safeguard themselves.
Fortinet Authentication Bypass Bug
Since dealing in network security, Fortinet is often subject to risks of cyberattacks . So it suggests its users patch any known vulnerabilities in its devices to safeguard themselves.
The latest one in such warnings has been about the CVE-2022-40684 – a security flaw in Fortinet’s FortiOS, FortiProxy, and FortiSwitchManager appliances letting attackers bypass the authentication and virtually do anything they want with the compromised system.
Horizon3.ai security researchers have released a proof-of-concept (POC) exploit for this bug after promising to release one later this week. The PoC even includes a technical root cause analysis for this vulnerability, making the understanding easier.
Another appliance vuln down… CVE-2022-40684, affecting multiple #Fortinet solutions, is an auth bypass that allows remote attackers to interact with all management API endpoints. Blog post and POC coming later this week. Patch now. pic.twitter.com/YS7svIljAw — Horizon3 Attack Team (@Horizon3Attack) October 10, 2022
