Header image

Fortinet Vulnerability Being Actively Exploited

The vulnerability may allow a remote attacker to gain super-admin privileges via crafted requests.

Fortinet has said that an authentication bypass vulnerability affecting FortiOS and FortiProxy is being exploited in the wild.

Tracked as CVE-2024-55591, the vulnerability may allow a remote attacker to gain super-admin privileges via crafted requests to Node.js websocket module, Fortinet said in an update.

Security researchers have warned that hackers have been mass-exploiting the vulnerability as a zero-day since December, according to TechCrunch.

Written by

Dan Raywood

Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.

He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.

Vulnerabilities and Flaws Published: 15 January Written by

Dan Raywood

Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.

He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.

Upcoming Events

No events found.

Related content

Claude Mythos: What CISOs Should Know

Claude Mythos: What CISOs Should Know

Iran and the New CNI Threat

Iran and the New CNI Threat

Vulnerability Management and the AI Challenge

Vulnerability Management and the AI Challenge

Identity-Based Attacks: The Threat and How to Mitigate It

Identity-Based Attacks: The Threat and How to Mitigate It

Report: UK cyberattacks grow faster than global rate

Report: UK cyberattacks grow faster than global rate

Novel CyberStrikeAI tool exploited in attacks

Novel CyberStrikeAI tool exploited in attacks

Industry urges reform to retain women in tech

Industry urges reform to retain women in tech

First Name

Last Name

Work Email

Phone

Company

Job Title

Please select an option

Please select an option

Please select an option

City

Please select an option

Please select an option

By providing your email and clicking the 'Subscribe' button, you acknowledge that you have read and agree to the CyberRisk Alliance Privacy Policy. You can unsubscribe at any time.

Please accept our terms and conditions

First Name

Last Name

Work Email

Phone

Company

Job Title

Please select an option

Please select an option

Please select an option

City

Please select an option

Please select an option

By providing your email and clicking the 'Subscribe' button, you acknowledge that you have read and agree to the CyberRisk Alliance Privacy Policy. You can unsubscribe at any time.

Please accept our terms and conditions