7x Second Security [9-January-2023]

Using Fortinet Products?

Do this: Patch immediately.
Why: Fortinet recently released patches addressing several vulnerabilities across it's product portfolio, including a high-severity vulnerability that could be exploited leading to remote code execution.
Additional Info: https://www.securityweek.com/high-severity-command-injection-flaws-found-fortinets-fortitester-fortiadc?&web_view=true

Using Synology VPN Plus Servers?

Do this: Patch immediately.
Why: Synology recently released patches addressing a critical-severity vulnerability that if exploited, could lead to a complete system take over.
Additional Info: https://thehackernews.com/2023/01/synology-releases-patch-for-critical.html

Using Zoho MangeEngine Products?

Do this: Update and patch immediately.
Why: Zoho recently released patches addressing a high-severity vulnerability that could be exploited allowing attackers to make custom queries to access database table entries.
Additional Info: https://www.bleepingcomputer.com/news/security/zoho-urges-admins-to-patch-severe-manageengine-bug-immediately/

Newsletter

Want 7x Second Security and other info straight to your inbox? We'll never send boring content.