Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/screaminggoat/statuses/113674791142313324">screaminggoat (screaminggoat@infosec.exchange)'s status on Thursday, 19-Dec-2024 03:25:05 JST</a><a href="https://infosec.exchange/@screaminggoat" title="screaminggoat@infosec.exchange"><img src="https://gnusocial.jp/avatar/278335-48-20250102170004.webp" width="48" height="48" alt="screaminggoat" style="position: absolute; left: 0; top: 0;">screaminggoat</a><div><ul><li></ul></div></section><article><p>Fortinet 18 December 2024 security advisory <a href="https://www.fortiguard.com/psirt/FG-IR-23-144" rel="nofollow noreferrer">FG-IR-23-144</a> (error loading post)<br><a href="https://cve.org/CVERecord?id=CVE-2023-34990" rel="nofollow noreferrer">CVE-2023-34990</a> (9.8 critical) relative path traversal in Fortinet FortiWLM leads to code and command execution: released today, 557 days after it was reserved by Fortinet on 09 June 2023. Unable to view the advisory in order to determine exploitation. Shame on them for waiting a year to patch/announce the vulnerability.</p><p>h/t: <a href="https://infosec.exchange/@cR0w">@cR0w</a></p><p><a href="https://infosec.exchange/tags/fortinet" rel="tag">#fortinet</a> <a href="https://infosec.exchange/tags/fortwlm" rel="tag">#fortwlm</a> <a href="https://infosec.exchange/tags/vulnerability" rel="tag">#vulnerability</a> <a href="https://infosec.exchange/tags/CVE" rel="tag">#CVE</a> <a href="https://infosec.exchange/tags/infosec" rel="tag">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" rel="tag">#cybersecurity</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4211889#notice-8231499">In conversation</a><time datetime="2024-12-19T03:25:05+09:00" title="Thursday, 19-Dec-2024 03:25:05 JST">about 4 months ago</time> <span>from <span><a href="https://infosec.exchange/@screaminggoat/113674791142313324" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@screaminggoat/113674791142313324">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
screaminggoat (screaminggoat@infosec.exchange)'s status on Thursday, 19-Dec-2024 03:25:05 JSTscreaminggoat
- cR0w :cascadia:
Fortinet 18 December 2024 security advisory FG-IR-23-144 (error loading post)
CVE-2023-34990 (9.8 critical) relative path traversal in Fortinet FortiWLM leads to code and command execution: released today, 557 days after it was reserved by Fortinet on 09 June 2023. Unable to view the advisory in order to determine exploitation. Shame on them for waiting a year to patch/announce the vulnerability.
h/t: @cR0w
#fortinet #fortwlm #vulnerability #CVE #infosec #cybersecurity
In conversationabout 4 months ago from infosec.exchangepermalink

Public

Embed Notice

HTML Code

Corresponding Notice