CISA Activity - FortiGuard Releases Security Updates for Multiple Products

system · December 14, 2023, 4:42pm

FortiGuard has released security updates to address vulnerabilities in multiple FortiGuard products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.

CISA encourages users and administrators to review the following advisories and apply necessary updates:

[ul]
[li]FG-IR-23-196: Double free in cache management[/li][li]FG-IR-22-038: FortiMail, FortiNDR, FortiRecorder, FortiSwitch, FortiVoice – Cross-site scripting forgery (CSRF) in HTTPd CLI console[/li][li]FG-IR-23-138: FortiOS, FortiProxy – Format String Bug in HTTPSd[/li][/ul]