back to article Double trouble for Fortinet as it issues critical FortiSIEM vulns

Fortinet's FortiSIEM product is vulnerable to two maximum-severity security vulnerabilities that allow for remote code execution, or at least according to two freshly published CVEs.* Both CVE-2024-23108 and CVE-2024-23109 have been assigned scores of 10 on the CVSS scale, suggesting exploits can be carried out remotely by …

  1. wimton@yahoo.com
    Coat

    The Dutch experienced an attack on the MoDs Fortigate appliances using CVE-2022-42475. The malware is named "coathanger" after one of the strings in the program.

  2. the future is back!

    Fortinet been Fortineted?

    "The security information and event management (SIEM) “an approach to security management that combines SIM (security information management) and SEM (security event management) functions into one security management system.”

    Security information and event management systems address the three major challenges that limit rapid incident response:

    The vast amount of unaggregated security data makes it hard to see what’s happening and prioritize threats.

    IT teams are understaffed/undertrained due to the cybersecurity skills gap.

    The need to demonstrate compliance takes time away from threat identification and response."

    OOOF!

  3. Anonymous Coward
    Facepalm

    Security device fails basic security

    Shouldn't they have tested this security device for bugs, by hacking their own systems.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like