FortiGate admins report active exploitation 0-day. Vendor isn’t talking.
Vulnerability allowing remote code execution has been discussed since at least 9 days ago.
If everything in the article is correct, then nobody should be using this vendor.
Dan Goodin is a reliable journalist, but fwiw we’ve had several vulnerabilities from Fortinot that weren’t really well handled, so if you’re still on their crummy devices it’s your own fault.
Nevertheless: https://www.crowdstrike.com/en-us/blog/crowdstrike-fortinet-partnership-unifies-endpoint-firewall-protection/
That headline alone almost gave me an aneurism 😂