Two command injection bugs threaten Fortinet's FortiSIEM

Affect versions from October 2022 to 2024

clock • 2 min read
Two command injection bugs threaten Fortinet's FortiSIEM

Two new maximum-severity vulnerabilities have hit Fortinet's FortiSIEM product.

Tracked under the identifiers CVE-2024-23108 and CVE-2024-23109, these vulnerabilities threaten the security posture of organisations relying on FortiSIEM for cybersecurity. Classified as comman...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
'Cybersecurity is a team sport, but it could do with a glow up'

Careers and Skills

Lacework and AWS challenge outdated perceptions of cybersecurity and attract new talent

clock 27 February 2024 • 5 min read
IT Essentials: LockBit and load

Security

They fought the law, and the law won - for now

clock 26 February 2024 • 2 min read
Cyber incident disrupts another UK university

Hacking

Coincides with attacks at universities in Cambridge and Manchester

clock 25 February 2024 • 2 min read
Most read
01

'Microsoft Copilot is a gimmick', says top CIO

28 February 2024 • 2 min read
02

Cyber incident disrupts another UK university

25 February 2024 • 2 min read
03
04

LockBit re-emerges a week after takedown

26 February 2024 • 2 min read
05

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

More on Threats and Risks

US, UK, Canada seek global coalition to combat state disinformation

US, UK, Canada seek global coalition to combat state disinformation

US, UK and Canada have endorsed a framework to tackle information manipulation

clock 27 February 2024 • 3 min read
LockBit re-emerges a week after takedown

LockBit re-emerges a week after takedown

'Damage control for the LockBit brand, a show of strength'

John Leonard
clock 26 February 2024 • 2 min read
Massive data leak exposes Chinese infosec vendor's cyberattacks-for-hire

Massive data leak exposes Chinese infosec vendor's cyberattacks-for-hire

Documents outline the use of hardware hacking devices, including a malicious power bank designed to surreptitiously upload data into victims' systems

clock 23 February 2024 • 3 min read