Your review has been sent successfully

Fortinet Updates

3069
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Most Viewed Warnings

Dell EMC Alert

● Critical

F5 Alert

● High

IBM Alert

● Critical

Fortinet Alert

● High

Red Hat Alert

● High

حملات تصيدية تستهدف مايكروسوفت تيمز (Microsoft Teams)

● High

Warning Date

Severity Level

Warning Number

Target Sector

17 November, 2019

● High

2019-631

All

Description:

Fortinet has released security updates to address multiple vulnerabilities in the following products:

  • FortiManager VM version 6.2.0, 6.0.6 and below
  • FortiOS VM all versions below 6.0.5
  • FortiClient for Linux 6.2.1 and below
  • FortiOS 6.0.0 to 6.0.6 5.6.0 to 5.6.10 5.4 all versions and below

Threats:

Attacker could exploit these vulnerabilities by doing the following:

  • Inject malicious code if he has read/write access to the VM image.
  • Privilege escalation from admin user to super_admin in FortiOS.
  • Run root system commands and overwrite system files in FortiClient.
  • Denial of service attack (DoS).

Best practice and Recommendations

The CERT team encourages users to update the affected products and to review Fortinet security advisory:

https://fortiguard.com/psirt?date=11-2019

Last updated at 1 January, 2020

Rate the content

rate-icon
up icon