[HackerNews] Unpatched Remote Hacking Flaw Disclosed in Fortinet’s FortiWeb WAF

Details have emerged about a new unpatched security vulnerability in Fortinet’s web application firewall (WAF) appliances that could be abused by a remote, authenticated attacker to execute malicious commands on the system.
“An OS command injection vulnerability in FortiWeb’s management interface (version 6.3.11 and prior) can allow a remote, authenticated attacker to execute arbitrary commands

Source: Read More (The Hacker News)

You might be interested in …

[BleepingComputer] The Week in Ransomware – June 18th 2021 – Law enforcement strikes back

Compared to the last few weeks, it has been a relatively quiet week with no ransomware attacks causing widespread disruption. […] Source: Read More (BleepingComputer)

Read More

[ZDNet] HelpSystems expands email, cloud security portfolio with acquisition of Agari, Beyond Security

All posts, ZDNet

The vendor is targeting areas ripe for growth in the cybersecurity field. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ThreatPost] ‘Tortilla’ Wraps Exchange Servers in ProxyShell Attacks

All posts, ThreatPost

The Microsoft Exchange ProxyShell vulnerabilities are being exploited yet again for ransomware, this time with Babuk from the new “Tortilla” threat actor. Source: Read More (Threatpost)

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.