[HackerNews] Unpatched Remote Hacking Flaw Disclosed in Fortinet’s FortiWeb WAF

Details have emerged about a new unpatched security vulnerability in Fortinet’s web application firewall (WAF) appliances that could be abused by a remote, authenticated attacker to execute malicious commands on the system.
“An OS command injection vulnerability in FortiWeb’s management interface (version 6.3.11 and prior) can allow a remote, authenticated attacker to execute arbitrary commands

Source: Read More (The Hacker News)

You might be interested in …

[TheRecord] Jenkins project discloses security breach following Confluence server hack

The developers of the Jenkins server, one of the most widely used open-source automation systems, said they suffered a security breach after hackers gained access to one of their internal servers and deployed a cryptocurrency miner. Despite the intrusion and malware deployment, the Jenkins team downplayed the severity of the breach in a statement published on Saturday. Jenkins […]

Read More

[ZDNet] Netskope report finds cloud-delivered malware increased 68% in Q2

All posts, ZDNet

For Q2, the report found that 43% of all malware downloads were malicious Office docs, a more than 20% jump compared to the start of 2020. Source: Read More (Latest topics for ZDNet in Security)

Read More

[SecurityWeek] Vulnerability Allows Remote DoS Attacks Against Apps Using Linphone SIP Stack

All posts, Security Week

A serious vulnerability affecting the Linphone Session Initiation Protocol (SIP) client suite can allow malicious actors to remotely crash applications, industrial cybersecurity firm Claroty warned on Tuesday. read more Source: Read More (SecurityWeek RSS Feed)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.