SSL-VPN Symlink Persistence Patch Bypass

CVSSv3 Score:

5.3

An Exposure of Sensitive Information to an Unauthorized Actor vulnerability [CWE-200] in FortiOS SSL-VPN may allow a remote unauthenticated attacker to bypass the patch developed for the symbolic link persistency mechanism observed in some post-exploit cases, via crafted HTTP requests. An attacker would need first to have compromised the product via another vulnerability, at filesystem level.

Revised on 2026-03-12 00:00:00

Source link

What's Hot

Incident: Life Saving Victoria server hacked by ‘malicious actors’ | ABC News Australia

Incident: Yakult Australia targeted in cyber attack, employee files published on dark web | ABC News Australia

Wildlife Cops Are Searching AI Cameras for ICE

Incident: Life Saving Victoria server hacked by ‘malicious actors’ | ABC News Australia

Incident: Yakult Australia targeted in cyber attack, employee files published on dark web | ABC News Australia

SSA-734261 V1.0: Authentication Bypass Vulnerability in Energy Services Using Elspec G5DFR

Global Takedown of Massive IoT Botnets Halts Record-Breaking Cyberattacks

Catchy & Intriguing

The Grandparent Scam: How AI Voice Technology Makes This Old Con Deadlier Than Ever

Pico 4 Review: Should You Actually Buy One Instead Of Quest 2?

A Review of the Venus Optics Argus 18mm f/0.95 MFT APO Lens

DJI Avata Review: Immersive FPV Flying For Drone Enthusiasts

Most Popular

Global Takedown of Massive IoT Botnets Halts Record-Breaking Cyberattacks

Catchy & Intriguing

The Grandparent Scam: How AI Voice Technology Makes This Old Con Deadlier Than Ever

Our Picks

Incident: Life Saving Victoria server hacked by ‘malicious actors’ | ABC News Australia

Incident: Yakult Australia targeted in cyber attack, employee files published on dark web | ABC News Australia

Wildlife Cops Are Searching AI Cameras for ICE

Subscribe to Updates

What's Hot

SSL-VPN Symlink Persistence Patch Bypass

Related Posts

Subscribe to Updates