Fortinet has confirmed that threat actors are actively exploiting a critical authentication bypass vulnerability, CVE-2022-40684, affecting FortiOS (7.0.0 to 7.0.6 and 7.2.0 to 7.2.1), FortiProxy (7.0.0 to 7.0.6 and 7.2.0) and FortiSwitchManager (7.0.0 and 7.2.0).

Download the report