Fortinet has released a security update to fix vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiAnalyzer, and FortiManager software, addressing CVE-2022-45862, CVE-2024-21757, CVE-2024-36505, which are actively exploited.

Affected Systems

The following systems are affected, but not limited to:

• FortiOS: versions 7.4.0 through 7.4.3, 7.2.7 and below, 7.0.14 and below.   

• FortiPAM: 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions.

• FortiProxy: 7.2 all versions, 7.0 all versions .

• FortiSwitchManager: versions 7.2.1 and below, 7.0 all versions.

• FortiAnalyzer and FortiManager: versions 7.0.0 through 7.0.10, versions 7.2.0 through 7.2.4, and versions 7.4.0 through 7.4.1.

Security Risks

The successful exploitation of vulnerabilities in Fortinet software poses a significant security risk, enabling cyber threat actors to gain unauthorized control over affected systems.

Recommended Actions

The National Cyber Security Authority (NCSA) strongly recommends to system administrators to:

• Follow Fortinet Security Advisories to lower the risk of potential exploits, protect systems, and ensure their security.

• Apply the required and latest security updates as soon as possible.

     The released software versions for upgrade include, but are not limited to:

• FortiOS: Versions 7.4.4 or above, 7.2.8 or above, 7.0.15 or above.

• FortiPAM: version 1.4 or above.

• FortiProxy: version 7.4 or above.

• FortiSwitchManager: Versions 7.2.2 or above.

• FortiAnalyzer and FortiManager: versions 7.4.2 and above, 7.2.5 and above, or 7.0.11 and above.

• Before any update task, please ensure you have a recent backup that can easily be restored.

For further information and support, please contact NCSA by email at rwcsirt@ncsa.gov.rw or call us on 9009.

References

https://www.fortiguard.com/psirt/FG-IR-22-445

https://www.fortiguard.com/psirt/FG-IR-23-467

https://www.fortiguard.com/psirt/FG-IR-24-012