Ivanti Releases Critical Updates for EPM and Avalanche Vulnerabilities

January 16, 2025

Snake Keylogger Malware – Active IOCs

January 16, 2025

CVE-2024-55591 – Fortinet FortiOS and FortiProxy Zero-Day Vulnerability Exploit in the Wild

January 16, 2025

Severity

High

Analysis Summary

CVE-2024-55591

An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS version 7.0.0 through 7.0.16 and FortiProxy version 7.0.0 through 7.0.19 and 7.2.0 through 7.2.12 allows a remote attacker to gain super-admin privileges via crafted requests to Node.js websocket module.

Impact

Security Bypass

Indicators of Compromise

CVE

CVE-2024-55591

Affected Vendors

Fortinet

Affected Products

Fortinet FortiOS 7.0.0 - 7.0.16
Fortinet FortiProxy 7.0.0 - 7.0.19
Fortinet FortiProxy 7.2.0 - 7.2.12

Remediation

Refer to Fortinet FortiGuard Security Advisory for patch, upgrade, or suggested workaround information.

Fortinet FortiGuard Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Ivanti Releases Critical Updates for EPM and Avalanche Vulnerabilities

Snake Keylogger Malware – Active IOCs

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.