ALERT: Critical FortiManager Vulnerability
The ASD's ACSC is tracking a critical vulnerability in FortiManager devices, actively being exploited. With a CVSSv3 score of 9.8, Australian organizations must review their networks and apply the vendor’s patch immediately. Patch details are available at PSIRT | FortiGuard Labs.
The Australian Signals Directorate's Australian Cyber Security Centre (ASD's ACSC) is tracking a high-severity vulnerability affecting FortiManager devices. Fortinet has confirmed active exploitation of vulnerable instances.
The vulnerability has been assigned a CVSSv3 score of 9.8, indicating critical risk.
Mitigation: Australian organizations should assess their networks for affected FortiManager instances. The mitigation advice provided by Fortinet should be implemented immediately. Patch details are available at PSIRT | FortiGuard Labs, and the ASD's ACSC strongly advises applying the patch as a priority.
Action Required: Review and patch vulnerable FortiManager instances immediately to prevent exploitation.