May 28, 2023

[Information Security Daily]On February 18, 2023, Fortinet patched major vulnerabilities in WAF and network access control systems, Schneider Electric PLC has vulnerabilities that can be used for RCE attacks

Information security company Fortinet patched major vulnerabilities CVE-2022-39952 and CVE-2021-42756 this week. These vulnerabilities are respectively related to the brand’s network access control system (NAC) and web application firewall (WAF). The point is that attackers can exploit it without being authenticated. The researchers disclosed the vulnerabilities CVE-2022-45788 and CVE-2022-45789 in Schneider Electric PLC, and pointed out that these vulnerabilities can be chained and exploited to allow attackers to remotely execute arbitrary code (RCE). The recent attacks of the malware FatalRAT are also noteworthy. Although hackers mainly target users who use Simplified Chinese, there are also victims in Taiwan.

Ewen Eagle

I am the founder of Urbantechstory, a Technology based blog. where you find all kinds of trending technology, gaming news, and much more.

View all posts by Ewen Eagle →

Leave a Reply

Your email address will not be published.