Fortinet: Hackers Exploit Zero-Day Vulnerability in VPN

Unknown attackers used a FortiOS SSL-VPN zero-day vulnerability patched last month in attacks on government organizations and government-related targets, according to Fortinet. The exploited security issue (CVE-2022-42475) is a heap-based buffer overflow vulnerability found in the FortiOS SSLVPNd that allows unauthenticated attackers to crash vulnerable devices or obtain remote code execution remotely. After silently addressing […]

This article has been indexed from Information Security Buzz

Read the original article: