Serial number: AV24-608
Date: October 23, 2024
On October 23, 2024, Fortinet published security advisories to address a vulnerability in multiple products. Included was a critical update for the following products::
- FortiManager 7.6 – versions prior to 7.6.1
- FortiManager 7.4 – versions prior to 7.4.5
- FortiManager 7.2 – versions prior to 7.2.8
- FortiManager 7.0 – versions prior to 7.0.13
- FortiManager 6.4 – versions prior to 6.4.15
- FortiManager 6.2 – versions prior to 6.2.13
- FortiManager Cloud 7.4 – versions prior to 7.4.5
- FortiManager Cloud 7.2 – versions prior to 7.2.8
- FortiManager Cloud0 – versions prior to 7.0.13
- FortiManager Cloud 6.4 – all versions
Fortinet has received reports that CVE-2024-47575 has been exploited.
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.
This alert was originated From: Canadian Centre for Cyber Security
https://cyber.gc.ca/en/alerts-advisories/fortinet-security-advisory-av24-608