Fortinet Warns of New Authentication Bypass Vulnerability


The Fortinet CVE-2022-40684 vulnerability is being actively exploited and is defined as the exploit that can log in as an administrator on the vulnerable system because it is an authentication bypass vulnerability. The FortiOS, Forti Proxy, and Forti switch Manager appliances from Fortinet were found to be vulnerable. This vulnerability’s CVE number is 2022-40684 and its CVSS evaluation gave it a 9.6 rating. Customers of Fortinet have been privately informed of a security weakness affecting FortiGate firewalls and Forti Proxy web proxies that may allow an attacker to carry out unauthorized actions on vulnerable systems.

Read more…