Kevin Beaumont on Nostr: The FortiGate issue has an advisory now: ...
The FortiGate issue has an advisory now: https://www.fortiguard.com/psirt/FG-IR-24-266
And a CVE: CVE-2024-46670
Found by some guys at QI-ANXIN Group
There’s some eye raising stuff in it but anyhoo, patch. You probably already are since the patches were released a while ago.
It doesn’t need management interface access, if you can send IKE packets you can send one which triggers the firewall to consume 90% RAM and fail open some traffic and/or crash.
And a CVE: CVE-2024-46670
Found by some guys at QI-ANXIN Group
There’s some eye raising stuff in it but anyhoo, patch. You probably already are since the patches were released a while ago.
It doesn’t need management interface access, if you can send IKE packets you can send one which triggers the firewall to consume 90% RAM and fail open some traffic and/or crash.