Fortinet Firewalls Exploited via Incompletely Patched Flaws

Timeline

1. 26.01.2026 13:55 1 articles · 23h ago

   Fortinet Firewalls Exploited via Incompletely Patched Flaws

   Fortinet confirmed ongoing exploitation of an improperly patched vulnerability in FortiCloud SSO authentication, affecting fully updated firewalls. The flaw, related to CVE-2025-59718 and CVE-2025-59719, allows unauthenticated bypass of SSO login via crafted SAML messages. Fortinet advises disabling FortiCloud SSO and restricting administrative access as mitigations.

   Show sources

   • ⚡ Weekly Recap: Firewall Flaws, AI-Built Malware, Browser Traps, Critical CVEs & More — thehackernews.com — 26.01.2026 13:55

   Open in new tab

Information Snippets

• Fortinet identified exploitation of a flaw in FortiCloud SSO authentication on fully patched firewalls.

  First reported: 26.01.2026 13:55
  1 source, 1 article
  Show sources

  • ⚡ Weekly Recap: Firewall Flaws, AI-Built Malware, Browser Traps, Critical CVEs & More — thehackernews.com — 26.01.2026 13:55

• The flaw is linked to incomplete patches for CVE-2025-59718 and CVE-2025-59719, allowing unauthenticated SSO bypass.

  First reported: 26.01.2026 13:55
  1 source, 1 article
  Show sources

  • ⚡ Weekly Recap: Firewall Flaws, AI-Built Malware, Browser Traps, Critical CVEs & More — thehackernews.com — 26.01.2026 13:55

• Fortinet recommends disabling FortiCloud SSO and restricting administrative access as mitigations.

  First reported: 26.01.2026 13:55
  1 source, 1 article
  Show sources

  • ⚡ Weekly Recap: Firewall Flaws, AI-Built Malware, Browser Traps, Critical CVEs & More — thehackernews.com — 26.01.2026 13:55