Nowadays many big organisations are using Fortinet Firewalls.
An anonymous security researcher has discovered highly suspicious code in FortiOS firewall from enterprise security vendor Fortinet. Last month some security researchers reported security issues in Juniper firewalls.
According to the security researcher this security hole affecting older versions of Fortinet’s FortiOS operating system which allows attackers to gain unauthorized access to vulnerable devices, but the vendor says it’s not a malicious backdoor.
According to the explanation, if anyone is using this backdoor account doesn’t appear in the device’s access logs.
Fortinet did not released any advisory for this vulnerability at the time when it was patched. In an advisory they published on Tuesday, the company provided the following workarounds: disable SSH admin access on all interfaces, or restrict SSH access to authorised IP addresses.
Subscribe for latest security updates