virus logo Threat Signal

The Threat Signal created by the FortiGuard Labs is intended to provide you with insight on emerging issues that are trending within the cyber threat landscape. The Threat Signal will provide concise technical details about the issue, mitigation recommendations and a perspective from the FortiGuard Labs team in an FAQ style format.

Whether it’s significant vulnerability disclosures including high profile zero days, coordinated announcements with Cyber Threat Alliance partners, malware of significance, or any threat making the news cycle, FortiGuard Threat Signals are there for you.

 Date

Total: 357

Name
Description
Date
Microsoft Windows NTLMv2 Hash Disclosure Spoofing Vulnerability
Microsoft Windows contains an NTLMv2 hash spoofing vulnerability (CVE-2024-43451) that could result in...
Nov 15, 2024
Palo Alto Expedition Missing Authentication Vulnerability (CVE-2024-5910)
What is the Vulnerability?CISA has added CVE-2024-5910, a missing authentication vulnerability in Palo...
Nov 08, 2024
Cisco URWB Access Point Command Injection Vulnerability (CVE-2024-20418)
What is the Vulnerability?A maximum severity security (CVS Score 10.0) vulnerability in the web-based...
Nov 07, 2024
Metabase Information Disclosure Vulnerability (CVE-2021-41277)
What is the attack?FortiGuard Labs observes widespread attack attempts targeting a three-year-old Metabase...
Oct 21, 2024
Veeam Backup and Replication Deserialization Vulnerability (CVE-2024-40711)
What is the Vulnerability?CVE-2024-40711 is a critical unauthenticated Remote Code Execution (RCE)...
Oct 17, 2024
Ivanti CSA (Cloud Services Appliance) zero-day Attack
What is the Attack?Attackers are actively exploiting multiple zero-day vulnerabilities affecting Ivanti...
Oct 08, 2024
Synacor Zimbra Collaboration Command Execution Vulnerability (CVE-2024-45519)
What is the Vulnerability?Attackers are actively exploiting CVE-2024-45519, a critical Zimbra...
Oct 03, 2024
Ivanti Virtual Traffic Manager (vTM ) Authentication Bypass Vulnerability (CVE-2024-7593)
What is the Vulnerability?Ivanti Virtual Traffic Manager (vTM), a software application used to manage and...
Sep 26, 2024
Apache HugeGraph-Server Improper Access Control Vulnerability (CVE-2024-27348)
What is the Vulnerability?CVE-2024-27348 is a remote code execution (RCE) vulnerability affecting Apache...
Sep 25, 2024
Ivanti Cloud Services Appliance (CSA) OS Command Injection Vulnerability (CVE-2024-8190)
What is the Vulnerability?An OS command injection vulnerability in Ivanti Cloud Services Appliance (CSA)...
Sep 13, 2024
Raisecom Gateway Command Injection (CVE-2024-7120)
What is the Attack?FortiGuard Labs observes attack attempts targeting certain models of Raisecom Gateway...
Sep 13, 2024
Versa Director Dangerous File Type Upload Vulnerability (CVE-2024-39717)
What is the Vulnerability?The Versa Director GUI contains a zero-day dangerous file type upload...
Aug 27, 2024
Microsoft Multiple Actively Exploited Vulnerabilities
What are the Vulnerabilities?Threat actors are exploiting multiple zero-day vulnerabilities that were...
Aug 14, 2024
SnakeKeylogger Attack
What is the Attack?Threat actors are continuously preying on end users to unknowingly install a trojan...
Aug 01, 2024
VMware ESXi Ransomware Attack (CVE-2024-37085)
What is the Attack?Threat actors are exploiting an authentication bypass vulnerability in ESXi...
Jul 31, 2024