menu
techminis

A naukri.com initiative

google-web-stories
source image

Securityaffairs

2M

read

386

img
dot

Image Credit: Securityaffairs

FortiJump flaw CVE-2024-47575 has been exploited in zero-day attacks since June 2024

  • The recently disclosed Fortinet FortiManager flaw, known as FortiJump (CVE-2024-47575), has been exploited in zero-day attacks since June 2024.
  • Over 50 servers have been impacted by these attacks, according to a report by Mandiant.
  • The vulnerability allows an attacker to execute arbitrary code or commands through specially crafted requests, due to a missing authentication issue in FortiManager and FortiManager Cloud versions.
  • Attackers have automated the exfiltration of files containing IPs, credentials, and configurations of managed devices from FortiManager.

Read Full Article

like

23 Likes

For uninterrupted reading, download the app