Results for vulnerability

Threat Research

Fortinet Security Researcher Discovers Multiple Critical Vulnerabilities in Adobe Photoshop

Learn more about the security patches for multiple critical zero-day vulnerabilities in Adobe Photoshop CC 2020 that were recently released by Adobe.

By Kushal Arvind ShahMarch 23, 2020

Threat Research

Update: Curveball Exploit (CVE-2020-0601) Starts Making the Rounds

Lean more about the recent Microsoft Curveball vulnerability and how FortiClient protects Fortinet customers from exploitation.

By Udi YavoJanuary 21, 2020

Threat Research

Addressing Microsoft’s January 2020 Security Update for CVE-2020-0601

Learn more about Microsoft’s January 2020 Security Update for CVE-2020-0601.

By FortiGuard SE TeamJanuary 15, 2020

Threat Research

Fortinet Security Researchers Discover Multiple Vulnerabilities in Adobe and Cisco Products

Our Fortinet security researchers discovered multiple vulnerabilities in Adobe and Cisco products, all of which have since been patched. Learn more.

By Peixue LiNovember 15, 2019

Threat Research

“BlueKeep” Vulnerability (CVE-2019-0708) within Cloud/Datacenter Machines: How to Safeguard Yourself?

Recently, FortiGuard Labs conducted its own research on Microsoft Azure datacenter IP ranges and found several instances of unpatched machines still vulnerable to the critical “BlueKeep” RDP vulnerability. Learn more about how to protect against this vulnerability.

By Kushal Arvind ShahJune 12, 2019

Threat Research

CVE-2019-0708 – Remote Desktop Protocol and Remote Code Execution #Bluekeep

The FortiGuard Labs SE Team has drafted a brief Threat Advisory alerting customers to immediately apply the latest patches from Microsoft for CVE-2019-0708 on any affected machines, read for more information.

By FortiGuard SE TeamMay 23, 2019

Threat Research

Detailed Analysis of macOS Vulnerability CVE-2019-8507

On March 25, 2019, Apple released macOS Mojave 10.14.4 and iOS 12.2. These two updates fixed a number of security vulnerabilities, including CVE-2019-8507 in QuartzCore (aka CoreAnimation), which was reported to Apple on January 3, 2019 using our FortiGuard Labs responsible disclosure process. Find out more in this detailed analysis of the macOS vulnerability CVE-2019-8507.

By Kai LuApril 23, 2019

Threat Research

Patch Your Adobe Shockwave Player: Fortinet Discovers Seven Zero-Day Remote Code Execution Vulnerabilities

Adobe released security bulletin APSB19-20, which patches seven Adobe Shockwave Player vulnerabilities. All of them were discovered by FortiGuard Labs researcher Honggang Ren and reported to Adobe by following Fortinet’s responsible disclosure process.

By Honggang RenApril 11, 2019

Threat Research

WordPress WooCommerce XSS Vulnerability – Hijacking a Customer Account with a Crafted Image

The FortiGuard Labs team recently discovered a Cross-Site Scripting (XSS) vulnerability in WooCommerce. WooCommerce is an open-source eCommerce platform built on WordPress.

By Zhouyuan YangMarch 04, 2019

Threat Research

Oracle VirtualBox NAT Network DoS Vulnerability

The FortiGuard Labs team recently discovered a network Denial of Service (DoS) vulnerability in Oracle VirtualBox (CVE-2019-2527).

By Zhouyuan YangJanuary 31, 2019