CVE-2024-21762 is an actively exploited FortiOS SSL VPN RCE requiring no authentication. Multiple threat actors including Chinese APTs are exploiting this at scale. Immediately upgrade FortiOS or disable SSL VPN. If patching is delayed, review FortiOS logs for IOCs related to the webshell dropper activity.
Fortinet FortiOS out-of-bounds write vulnerability in sslvpnd allows unauthenticated RCE via HTTP requests.
Exploit-DB.ai delivers real-time AI-triaged zero-day alerts directly to your inbox.
Activate Supernova →