Topic: forticloud sso
-
Fortinet Mitigates Critical FortiCloud SSO Zero-Day Before Patch
A critical authentication bypass flaw (CVE-2026-24858) in Fortinet's FortiCloud SSO was actively exploited, allowing attackers to gain administrative control over devices, even fully patched ones, by creating rogue accounts. Fortinet responded by globally disabling and then restricting FortiCloud...
Read More » -
Thousands of FortiCloud SSO Devices Vulnerable to Remote Hacks
Tens of thousands of internet-facing Fortinet devices remain vulnerable to critical authentication bypass flaws (CVE-2025-59718/9), creating a massive attack surface that is already under active exploitation. Attackers exploit the flaw using crafted SAML messages to gain administrative access, al...
Read More » -
Patched FortiGate Firewalls Still Vulnerable to CVE-2025-59718
A critical Fortinet firewall vulnerability (CVE-2025-59718) remains actively exploitable even on systems with official patches, allowing attackers to bypass authentication and take over networks. Security researchers have confirmed ongoing exploitation where attackers use malicious SSO logins to ...
Read More » -
Hackers Target Unpatched Fortinet Flaws After Fix
Attackers are exploiting two critical authentication bypass vulnerabilities (CVE-2025-59718 & CVE-2025-59719) in Fortinet products, gaining administrative access to steal sensitive system configuration files. The theft of these configuration files poses a severe risk, exposing network details and...
Read More » -
FortiGate Firewalls Under Attack: Critical Auth Bypass Exploited
Attackers are actively exploiting a critical Fortinet firewall vulnerability (CVE-2025-59718) to bypass authentication and steal sensitive network configuration files containing encrypted credentials. The flaw, along with a related one (CVE-2025-59719), stems from improper cryptographic signature...
Read More » -
Fortinet Patches Critical FortiCloud SSO Zero-Day Under Attack
Fortinet has patched a critical zero-day vulnerability (CVE-2026-24858) that allowed attackers to bypass authentication and gain unauthorized administrative access to firewalls and other security appliances. The flaw specifically affected systems with the FortiCloud Single Sign-On feature enabled...
Read More » -
Fortinet Firewalls Hacked: Critical Configs Stolen
An automated campaign is exploiting an unknown vulnerability in Fortinet FortiGate firewalls' SSO functionality, creating unauthorized admin accounts and stealing configuration data within seconds. The attacks resemble a previous campaign exploiting a critical authentication bypass flaw (CVE-2025...
Read More » -
Patched FortiGate Firewalls Still Vulnerable to Hacks
A critical Fortinet firewall vulnerability (CVE-2025-59718) persists despite patches, allowing unauthorized admin access via the FortiCloud SSO feature even on the latest software versions. Fortinet is preparing new updates, but the immediate recommendation is to disable the "Allow administrative...
Read More »