Ars Technica

FortiGate admins report active exploitation 0-day. Vendor isn’t talking.

Fortinet, a maker of network security software, has kept a critical vulnerability under wraps for more than a week amid reports that attackers are using it to execute malicious code on servers used by ...
Ars Technica

Fortinet stays mum on critical 0-day reportedly under active exploitation

I don't understand this. Isn't, for example, 7.4.5 and above (safe versions) below 7.6.0 (which is a vulnerable version)? Do I just not understand how versioning works? Click to expand... I’m not sure ...
Hosted on MSN

Fortinet finally cops to critical make-me-admin bug under active exploitation

Fortinet finally published a security advisory on Friday for a critical FortiWeb path traversal vulnerability under active exploitation – but it appears digital intruders got a month's head start.… ...