New critical security vulnerability in Fortinet firewall CVE-2022-40684 (CVSS score: 9.6)

A security vulnerability has been reported on Fortinet firewalls. The vulnerability number is CVE-2022-40684 and it has a score of 9.6 on a scale of 1 to 10, so it is a critical vulnerability.

The critical flaw concerns an authentication bypass vulnerability that can allow an unauthenticated malicious person to perform arbitrary operations on the administration interface of the impacted firewalls. The impacted versions are :

FortiOS - From 7.0.0 to 7.0.6 and from 7.2.0 to 7.2.1
FortiProxy - From 7.0.0 to 7.0.6 and from 7.2.0 to 7.2.1

Due to the possibility of remote exploitation of this vulnerability, Fortinet strongly recommends that all his customers with the vulnerable versions upgrade immediately.

As additional measures, Streamscan recommends that you:

Do not expose the administration interface of your firewalls on the Internet if not necessary.
Use IP filtering to limit access to your firewall administration interface
More generally, you should use multi-factor authentication (MFA) for access to your firewalls.

How can StreamScan help you?

Cyber attacks are exploding all the time. Without continuous security monitoring, you have no visibility into what attacks are targeting you. You can't protect yourself from what you can't see.

Let us put our eyes on your network. Join our MDR managed monitoring platform powered by our CDS cyber threat detection technology and keep yourself safe from cyberattacks.