{"id":6431,"date":"2026-01-05T17:44:55","date_gmt":"2026-01-05T17:44:55","guid":{"rendered":"https:\/\/cybersecurityinfocus.com\/?p=6431"},"modified":"2026-01-05T17:44:55","modified_gmt":"2026-01-05T17:44:55","slug":"ten-thousand-firewalls-are-vulnerable-to-old-vulnerability","status":"publish","type":"post","link":"https:\/\/cybersecurityinfocus.com\/?p=6431","title":{"rendered":"Ten thousand firewalls are vulnerable to old vulnerability"},"content":{"rendered":"
\n
\n
\n
\n
<\/div>\n

Bleeping Computer<\/a> reports that hackers are exploiting an old vulnerability in FortiOS that can be used to get around the two-factor authentication<\/a> (2FA) requirement.<\/p>\n

The vulnerability, designated CVE-2020-12812, was patched back in July 2020, but five and a half years later, there are still at least 10,000 firewalls that have not been updated.<\/p>\n

To be on the safe side, all users of FortiOS and Fortigate are therefore urged to install the latest updates as soon as possible.<\/p>\n

This news brief originally appeared on ComputerSweden<\/a>.<\/em><\/p>\n

More Fortinet security news:<\/p>\n

FortiGate firewall credentials being stolen after vulnerabilities discovered<\/a><\/p>\n

Fortinet criticized for \u2018silent\u2019 patching after disclosing second zero-day vulnerability in same equipment<\/a><\/p>\n

Fortinet admins urged to update software to close FortiCloud SSO holes<\/a><\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"

Bleeping Computer reports that hackers are exploiting an old vulnerability in FortiOS that can be used to get around the two-factor authentication (2FA) requirement. The vulnerability, designated CVE-2020-12812, was patched back in July 2020, but five and a half years later, there are still at least 10,000 firewalls that have not been updated. To be […]<\/p>\n","protected":false},"author":0,"featured_media":6432,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-6431","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-education"],"_links":{"self":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/6431"}],"collection":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6431"}],"version-history":[{"count":0,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/6431\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/media\/6432"}],"wp:attachment":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6431"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6431"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6431"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}