Rewterz

SideWinder APT Group aka Rattlesnake Targeting Pakistan – Active IOCs

August 15, 2024
Rewterz

North Korean APT Kimsuky aka Black Banshee – Active IOCs

August 15, 2024

CVE-2024-21757 – Fortinet FortiManager Vulnerability

Severity

Medium

Analysis Summary

CVE-2024-21757

Fortinet FortiManager or FortiAnalyzer could allow a remote attacker to bypass security restrictions, caused by an unverified password change vulnerability. An attacker could exploit this vulnerability to allow an attacker to modify admin passwords via the device configuration backup.

Impact

  • Security Bypass

Indicators of Compromise

CVE

  • CVE-2024-21757

Affected Vendors

Fortinet

Affected Products

  • Fortinet FortiAnalyzer - 7.4.0
  • Fortinet FortiManager - 7.4.0

Remediation

Refer to FortiGuard Advisory for patch, upgrade or suggested workaround information.

FortiGuard Advisory

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.