mikecybersecaspire (2)

This vulnerability is expected to be of very high value as Fortigate SSL VPN vulnerabilities have been exploited in the past, particurlarly by state sponsored or otherwise-motivated IAB actors. Fortinet also predict that whilst there isn’t an official link to Volt Typhoon, they do expect the majority of TA’s exploiting this vulnerability, Volt Typhoon have been known to exploit prior Fortigate SSL VPN vulns as part of their initial access campaign.