Unpatched Remote Hacking Flaw Disclosed in Fortinet's FortiWeb WAF.


A flaw in Fortinet’s web application firewall (WAF) has been identified, allowing attackers to execute arbitrary instructions on devices and servers running the protection software.

Because the vulnerability is only available to authenticated persons, an attacker would need to get the administrator’s credentials before launching an attack.

Read More…