all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Multiple Vulnerabilities in Fortinet FortiSIEM Could Allow for Remote Code Execution

Add to bookmarks
May 29, 2024, 7:59 p.m. |

Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org

Multiple vulnerabilities have been discovered in Fortinet FortiSIEM which could allow for remote code execution. FortiSIEM is a multi-tenant SIEM that offers real-time infrastructure and user awareness for precise threat detection, analysis, and reporting. Successful exploitation could allow for remote code execution in the context of the affected service account. Depending on the privileges associated with the service account an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Service accounts …

analysis awareness code code execution context detection exploitation fortinet fortisiem infrastructure multi-tenant real remote code remote code execution reporting service siem threat threat detection user awareness vulnerabilities

Visit resource

More from www.cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center

Multiple Vulnerabilities in Progress MOVEit Products Could Allow for Authentication Bypass 1 day, 1 hour ago | www.cisecurity.org
application authentication authentication bypass bypass +17
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution 1 day, 2 hours ago | www.cisecurity.org
arbitrary code arbitrary code execution chrome code +7
Multiple Vulnerabilities in VMware Products Could Allow for Remote Code Execution 1 week, 1 day ago | www.cisecurity.org
centralized management cloud cloud platform code +23
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution 2 weeks ago | www.cisecurity.org
arbitrary code arbitrary code execution chrome code +7
Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution 2 weeks ago | www.cisecurity.org
adobe adobe experience manager apps arbitrary code +19
Critical Patches Issued for Microsoft Products, June 11, 2024 2 weeks ago | www.cisecurity.org
accounts attacker change code +14
Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution 2 weeks ago | www.cisecurity.org
access arbitrary code arbitrary code execution browser +16
A Vulnerability in SolarWinds Serv-U Could Allow for Path Transversal 2 weeks, 4 days ago | www.cisecurity.org
can disclosure enterprise file +20
Multiple Vulnerabilities in PHP Could Allow for Remote Code Execution 2 weeks, 5 days ago | www.cisecurity.org
account applications code code execution +14

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Technology Specialist I: Windows Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California
View on infosec-jobs.com

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
View on infosec-jobs.com

Vice President, Controls Design & Development-7

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Vice President, Controls Design & Development-5

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Data Scientist & AI Prompt Engineer

@ Varonis | Israel
View on infosec-jobs.com

Contractor

@ Birlasoft | INDIA - MUMBAI - BIRLASOFT OFFICE, IN
View on infosec-jobs.com