Firewall Threat Intel
The latest firewall vulnerabilities, summarized.
Fresh analysis of newly disclosed firewall and edge-device CVEs — what's exploitable, who's affected, and what to do about it.
Auto-updated weekly · curated by ThreatMate
PAN-OS GlobalProtect command injection lets attackers run as root
A command-injection flaw in the GlobalProtect feature of PAN-OS gave unauthenticated attackers root on the firewall, exploited in the wild before a patch shipped. Who's affected and how to respond.
Read the analysis →FortiOS SSL-VPN out-of-bounds write under active exploitation
An out-of-bounds write in the FortiOS SSL-VPN daemon allows unauthenticated remote code execution. CISA added it to the KEV catalog. Which FortiGate builds are affected and the fastest path to patch.
Read the analysis →