FortiOS and FortiProxy with a highly dangerous vulnerability
Fortinet reports a vulnerability with a CVSS score of 7.5 for FortiOS and FortiProxy and is therefore considered highly dangerous. Attackers could retrieve the administrator cookie and thus gain unauthorized access. Various updates are available from Fortinet. Fortinet describes the security notification for the high-risk vulnerability with CVSS score 7.5 as follows: “A vulnerability with insufficiently protected credentials in FortiOS and FortiProxy could, in rare and specific cases, allow an attacker to obtain the administrator cookie by convincing the administrator to do so to visit a website controlled by malicious attackers via SSL VPN.” In this way…