A number of US agencies, such as the Federal Bureau of Investigations (FBI) and the Infrastructure Security Agency (CISA), have issued a joint warning that advanced persistent threat (APT) groups are exploiting vulnerabilities found in Fortinet FortiOS. The groups are exploiting the vulnerabilities in order to compromise both government and commercial organisations using the software.
The alert warned that the cybercriminals have been scanning for systems that have not patched Fortinet FortiOS vulnerabilities. The vulnerabilities that are being exploited are CVE-2018-13379, CVE-2020-12812, and CVE-2019-5591, although all vulnerabilities have existing patches.