Fortinet issued 40 security advisories last week to inform customers about the availability of patches for dozens of vulnerabilities, including critical bugs affecting FortiNAC and FortiWeb products.
Two of the alerts have a severity rating of “critical” and 15 of them have been classified as “high”. One of the critical alerts describes CVE-2021-42756, a CVE identifier assigned to several stack-based buffer overflow vulnerabilities in the FortiWeb proxy daemon. The vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code on a target system using malicious HTTP requests.
There are hundreds of thousands of Fortinet systems exposed to the Internet, and many of them may be vulnerable to attacks using CVE-2022-39952.
Read more: Fortinet Patches Critical Code Execution Vulnerabilities in FortiNAC, FortiWeb
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
