On December 12th, 2022, Fortinet issued security advisory outlining vulnerability CVE-2022-42475. Successful exploit could allow a remote, unauthenticated user to execute code on FortiGate devices. Leading to compromise of the security appliance.
Dutch military intelligence has discovered that over 20,000 Fortinet FortiGate devices were compromised following the zero day exploit between 2022 and 2023. Compromises like this are a stark reminder that even security devices, appliances, and software need to be included in every organization’s robust patch management plan. It’s not just Windows that needs updating. And patch management is not a set and forget solution. It’s a practice that requires continuous monitoring, auditing, and validation.
Patch your firewalls, UTMs, and all forms of security appliances!
Read more here:
Fortinet Hacks Led To 20,000 FortiGate Devices Breached: Report
https://www.crn.com/news/security/2024/fortinet-hacks-led-to-20-000-fortigate-devices-breached-report
How to resolve CVE-2022-42475:
https://vulcan.io/blog/how-to-fix-cve-2022-42475/
0 Comments