Article

Alert: Fortinet Security Updates – January 2024

Fortinet has issued a security update to rectify a vulnerability in FortiOS and FortiProxy software, specifically addressing an actively exploited zero-day CVE-2023-44250.

Affected Systems

The following systems are affected:

Security Risks

Successfully exploiting a vulnerability in FortiOS and FortiProxy software poses a significant security risk, allowing cyber threat actors to gain unauthorized control over affected systems.

Recommended Actions

The National Cyber Security Authority (NCSA) strongly recommends to system administrators to:

Follow Fortinet Security Advisories to lower the risk of potential exploits, protect systems, and ensure their security.
Apply the required and latest security updates as soon as possible.

The released software version to upgrade to are:

Before any update task, please ensure you have a recent backup that can easily be restored.

For further information and support, please contact NCSA by email at rwcsirt@ncsa.gov.rw or call us on 9009.

References

https://www.fortiguard.com/psirt/FG-IR-23-315

10 January 2024

More updates

18 April 2025

Alert: Oracle Security Updates – April 2025

Oracle released its latest Critical Patch Update (CPU), addressing 378 security vulnerabilities across a wide range of Oracle products.

18 April 2025

Alert: Apple Security Updates – April 2025

Apple has released urgent security updates to address two zero-day vulnerabilities.

18 April 2025

Alert: Cisco Security Updates – April 2025

Cisco has released security updates to address vulnerabilities in multiple Cisco products.

10 April 2025

Alert: Microsoft Security Updates – April 2025

Microsoft has released security updates to address vulnerabilities in its software products.

Fortinet has issued a security update to rectify a vulnerability in FortiOS and FortiProxy software, specifically addressing an actively exploited zero-day CVE-2023-44250.

Affected Systems

The following systems are affected:

FortiOS version:7.4.0 through 7.4.1.

FortiOS Version: 7.2.5.

FortiProxy Version: 7.4.0 through 7.4.1.

Security Risks

Successfully exploiting a vulnerability in FortiOS and FortiProxy software poses a significant security risk, allowing cyber threat actors to gain unauthorized control over affected systems.

Recommended Actions

The National Cyber Security Authority (NCSA) strongly recommends to system administrators to:

Follow Fortinet Security Advisories to lower the risk of potential exploits, protect systems, and ensure their security.

Apply the required and latest security updates as soon as possible.

The released software version to upgrade to are:

FortiOS version: 7.4.2 or above.

FortiOS version: 7.2.6 or above.

FortiProxy version: 7.4.2 or above.

Before any update task, please ensure you have a recent backup that can easily be restored.

For further information and support, please contact NCSA by email at rwcsirt@ncsa.gov.rw or call us on 9009.

References

https://www.fortiguard.com/psirt/FG-IR-23-315

	info@ncsa.gov.rw
	9009 / 0781813310
	‎+250 791 445 224