A suspected (but currently unidentified) zero-day vulnerability in Fortinet FortiWeb is being exploited by unauthenticated attackers to create new admin accounts on vulnerable, internet-facing devices. Whether intentionally or accidentally, the vulnerability (or this specific path for triggering it) has been addressed in the latest FortiWeb version (8.0.2), Rapid7 researchers confirmed. Exploitation in the wild Exploitation attempts were first observed at the beginning of October by threat intelligence company Defused, after one of their honeypots had … More
The post A suspected Fortinet FortiWeb zero-day is actively exploited, researchers warn appeared first on Help Net Security.
