New Fortinet Vulnerabilities (March 2023)

Most of you have already read about the latest release of Fortinet’s new PSIRT advisories. There are 15 new vulnerabilities for FortiOS and other products with severity level from low up to critical. We strongly recommend that you checkt the PSIRT advisories and update your Fortinet products to one of…

 391 total views,  2 views today

read more

Swisscom Centro Business: Incoming HTTPS-Sessions and SSLVPN stop working

BOLL

In the last two weeks we have received many support requests because of non-functioning SSL connections from our Fortinet, Palo Alto Networks and Watchguard customers. Incoming SSL connections on port tcp/443 suddenly stop working. These can be SSLVPNs, Global Protect connections, port forwardings (VIPs, Destination NAT) for internal web servers…

 481 total views,  2 views today

read more

How to correctly power the FortiAP 431/433G-Series

We noticed some interesting facts about the new large FortiAP G-Series models that we would like to share with you: When we studied the datasheet and the quick start guide of these new access points, we were surprised to see a drastic increase in power consumption: The maximum power consumption…

 568 total views,  2 views today

read more

New FortiGate Vulnerability – CVE-2022-42475

Today Fortinet has published a new critical vulnerability in their FortiGate products. A successful attack allows arbitrary code or commands to be executed. The problem exist in the SSLVPN module – and you might be vulnerable if you are using SSLVPN and not running the latest patch release of the…

 1,372 total views,  3 views today

read more

CheatSheet FortiOS v7.2

We are happy to present you the new cheat sheet for FortiOS version 7.2. Most commands have remained the same.A bigger change is that the Packet Sniffer and the Debug Flow are now also available in the WebUI under Network > Diagnostics. We wish you good luck with troubleshooting.  1,285 total…

 1,285 total views,  1 views today

read more

Remediation steps for FG-IR-22-377 / CVE-2022-40684

Fortinet has released information about PSIRT FG-IR-22-377, also known as CVE-2022-40684. Following we have a collection of remediation steps to take if your FortiGate has been breached. We have documented some information about this vulnerability in this blog article. We will update this post as soon as new evolvements are…

 1,200 total views

read more

CVE-2022-40684 – Fortinet: Authentication bypass on administrative interface (HTTP/HTTPS) (English)

German Version: CVE-2022-40684 – Fortinet Authentication bypass on administrative interface (HTTP/HTTPS) (Deutsch) You have certainly (and hopefully) read the information on the published Fortigate administration access vulnerability and applied the appropriate patches. We have compiled all the information again here for your convenience.  1,510 total views,  3 views today

 1,510 total views,  3 views today

read more