Ars Technica

Fortinet SSL-VPN or Windows VPN

I already setup the Fortigate to do SSL-VPN using Active Directory (LDAP) for authentication. It works great, but requires a Fortinet client installation and some ...
Bleeping Computer

Fortinet fixes critical RCE flaw in Fortigate SSL-VPN devices, patch now

Update 6/12/23 added below: Fortinet released a new advisory warning that the vulnerability may have been exploited in attacks. Fortinet has released new Fortigate firmware updates that fix an ...
Ars Technica

Fortinet SSL VPN Problem

I'll work with Fortinet support on this also, but thought I would ask you guys in case you had run into this. We have a user that connects from home via the Fortinet SSL VPN. It had been working then ...
LeMagIT

VPN-SSL : vulnérabilité critique inédite chez Fortinet

[Mise à jour, le 12/12/2022 @ 17h45] Fortinet vient de reconnaître publiquement l’existence de cette vulnérabilité désormais référencée CVE-2022-42475, en rendant accessible à tous, sa notice ...
LeMagIT

VPN-SSL : retour à la case patch pour les clients de Fortinet

L’information a commencé à se répandre ce samedi 10 juin 2023 : une nouvelle vulnérabilité critique a été découverte dans les services VPN-SSL des équipements FortiGate de Fortinet. De type RCE, elle ...
Bleeping Computer

Fortinet fixes critical vulnerabilities in SSL VPN and web firewall

Fortinet has fixed multiple severe vulnerabilities impacting its products. The vulnerabilities range from Remote Code Execution (RCE) to SQL Injection, to Denial of Service (DoS) and impact the ...
Infosecurity-magazine.com

Fortinet Addresses Critical FortiGate SSL-VPN Vulnerability

Network security solution provider Fortinet has patched a critical bug in its FortiOS and FortiProxy SSL-VPN software that could be exploited to hijack equipment. The vulnerability, identified as ...