Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://cyberplace.social/users/GossiTheDog/statuses/113300714807554904">Kevin Beaumont (gossithedog@cyberplace.social)'s status on Monday, 14-Oct-2024 00:02:01 JST</a><a href="https://cyberplace.social/@GossiTheDog" title="gossithedog@cyberplace.social"><img src="https://gnusocial.jp/avatar/38360-48-20250105013211.webp" width="48" height="48" alt="Kevin Beaumont" style="position: absolute; left: 0; top: 0;">Kevin Beaumont</a><div><a href="https://cyberplace.social/@GossiTheDog/113299829063759416" rel="in-reply-to">in reply to</a></div></section><article><p>Different vuln from earlier this year, but same component, to give scale of unpatched Forti problem. <a href="https://infosec.exchange/@shadowserver/113300701642489996" rel="nofollow noreferrer">https://infosec.exchange/@shadowserver/113300701642489996</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/3819688#notice-7473004">In conversation</a><time datetime="2024-10-14T00:02:01+09:00" title="Monday, 14-Oct-2024 00:02:01 JST">about 4 months ago</time> <span>from <span><a href="https://cyberplace.social/@GossiTheDog/113300714807554904" rel="external" title="Sent from cyberplace.social via ActivityPub">cyberplace.social</a></span></span><a href="https://cyberplace.social/@GossiTheDog/113300714807554904">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: media.infosec.exchange</div><h5><a href="https://infosec.exchange/@shadowserver/113300701642489996">The Shadowserver Foundation (@shadowserver@infosec.exchange)</a></h5><div> from <span>The Shadowserver Foundation</span></div></header><div>Attached: 2 imagesWe are now reporting in our feeds Fortinet IPs still likely vulnerable to CVE-2024-23113 (format string pre-auth RCE). This vulnerability is known to be exploited in the wild.87,390 IPs found on 2024-10-12 scan. Top: US (14K), Japan (5.1K), India (4.8K)We are sharing daily feeds of vulnerable IPs in our Vulnerable HTTP report: https://shadowserver.org/what-we-do/network-reporting/vulnerable-http-report/You can track CVE-2024-23113 vulnerable instances over time on our Dashboard: https://dashboard.shadowserver.org/statistics/combined/time-series/?date_range=other&amp;d1=2024-10-09&amp;d2=2024-10-12&amp;source=http_vulnerable&amp;source=http_vulnerable6&amp;tag=cve-2024-23113%2B&amp;dataset=unique_ips&amp;style=stackedPatch details from Fortinet (Feb 8th, 2024): https://fortiguard.com/psirt/FG-IR-24-029Note this vulnerability has been added recently to the US CISA's Known Exploited Vulnerabilities catalog https://www.cisa.gov/known-exploited-vulnerabilities-catalog</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Kevin Beaumont (gossithedog@cyberplace.social)'s status on Monday, 14-Oct-2024 00:02:01 JST Kevin Beaumont
in reply to
Different vuln from earlier this year, but same component, to give scale of unpatched Forti problem. https://infosec.exchange/@shadowserver/113300701642489996
In conversationabout 4 months ago from cyberplace.socialpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: media.infosec.exchange
  The Shadowserver Foundation (@shadowserver@infosec.exchange)
  from The Shadowserver Foundation
  Attached: 2 images We are now reporting in our feeds Fortinet IPs still likely vulnerable to CVE-2024-23113 (format string pre-auth RCE). This vulnerability is known to be exploited in the wild. 87,390 IPs found on 2024-10-12 scan. Top: US (14K), Japan (5.1K), India (4.8K) We are sharing daily feeds of vulnerable IPs in our Vulnerable HTTP report: https://shadowserver.org/what-we-do/network-reporting/vulnerable-http-report/ You can track CVE-2024-23113 vulnerable instances over time on our Dashboard: https://dashboard.shadowserver.org/statistics/combined/time-series/?date_range=other&d1=2024-10-09&d2=2024-10-12&source=http_vulnerable&source=http_vulnerable6&tag=cve-2024-23113%2B&dataset=unique_ips&style=stacked Patch details from Fortinet (Feb 8th, 2024): https://fortiguard.com/psirt/FG-IR-24-029 Note this vulnerability has been added recently to the US CISA's Known Exploited Vulnerabilities catalog https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Public

Embed Notice

HTML Code

Corresponding Notice