post

Fortinet甫修補的漏洞已遭駭客濫用

By wellchen2020
尚無留言

Fortinet上周修補影響旗下防火牆、閘道器等產品的兩個重大漏洞已經遭人濫用。
這兩項漏洞CVE-2025-59718及CVE-2025-59719,皆為加密簽章不當驗證造成,未經身分驗證的攻擊者可發送特製的SAML訊息,即可繞過FortiCloud單一簽入(SSO)的身分驗證機制,啟用此單一簽入機制的FortiOS、FortiWeb、FortiProxy,或是FortiSwitchManager都會受影響。這兩項漏洞CVSS風險分數皆達9.8。

Xpeng CEO dismisses AI bubble fears, predicts robots will soon be affordable for households
ByteDance pushes frequent updates to Doubao AI as privacy concerns persist

Comments

發佈留言

發佈留言必須填寫的電子郵件地址不會公開。 必填欄位標示為 *

Sign In

Don't have an account yet? Register

Forgot password?

Register

Reset Password

Please enter your username or email address, you will receive a link to create a new password via email.