The report indicated that while attempting to recreate the initial FortiJump vulnerability, researchers uncovered several other security flaws, including a particularly concerning authenticated escalation vulnerability.
WatchTowr Labs highlighted that due to the significant nature of the original FortiJump flaw, it was imperative to disclose the new 'FortiJump Higher' vulnerability immediately before remediation could be provided.
The original FortiJump vulnerability was critically rated at 9.8 on the CVSS scale, and had been actively exploited for over three months prior to its disclosure.
The report emphasized that FortiManager, a key tool for centralized administration, must adhere to high-security standards to protect organizations from vulnerabilities like 'FortiJump Higher'.
Collection
[
|
...
]