{"id":207543,"date":"2026-01-28T17:35:00","date_gmt":"2026-01-28T22:35:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/01\/28\/fortinets-latest-zero-day-vulnerability-carries-frustrating-familiarities-for-customers\/"},"modified":"2026-01-28T18:00:15","modified_gmt":"2026-01-28T23:00:15","slug":"fortinets-latest-zero-day-vulnerability-carries-frustrating-familiarities-for-customers","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/01\/28\/fortinets-latest-zero-day-vulnerability-carries-frustrating-familiarities-for-customers\/","title":{"rendered":"Fortinet\u2019s latest zero-day vulnerability carries frustrating familiarities for customers"},"content":{"rendered":"<p><a href=\"https:\/\/cyberscoop.com\/ortinet-zero-day-cve-2026-24858-forticloud-sso-auth-bypass\/\">Fortinet\u2019s latest zero-day vulnerability carries frustrating familiarities for customers<\/a><\/p>\n<p><a href=\"https:\/\/cyberscoop.com\/ortinet-zero-day-cve-2026-24858-forticloud-sso-auth-bypass\/\">https:\/\/cyberscoop.com\/ortinet-zero-day-cve-2026-24858-forticloud-sso-auth-bypass\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-01-28 17:35:00<\/a><\/p>\n<p>Source Domain: <a href=\"cyberscoop.com\">cyberscoop.com<\/a><\/p>\n<p>Fortinet customers are confronting another actively exploited zero-day vulnerability that allows attackers to bypass authentication in the single sign-on flow for FortiCloud and gain privileged access to multiple Fortinet firewall products and related services.<\/p>\n<p>The vendor issued a security advisory for the vulnerability \u2014 CVE-2026-24858 \u2014 warning that some instances of exploitation already occurred earlier this month. Fortinet has yet to release patches to address the critical vulnerability across multiple versions of its products, including FortiAnalyzer, FortiManager, FortiOS, FortiProxy and FortiWeb.<\/p>\n<p>Defects in Fortinet products are a recurring problem for the vendor\u2019s customers and defenders, making 24 appearances on the Cybersecurity and Infrastructure Security Agency\u2019s known exploited vulnerabilities catalog since late 2021. One-third of those vulnerabilities made the list last year and 13 are known to be used in ransomware campaigns.<\/p>\n<p>The agency added the latest Fortinet defect, which has a CVSS rating of 9.8, to its known exploited vulnerabilities catalog Tuesday and shared Fortinet\u2019s guidance in a subsequent alert Wednesday.<\/p>\n<p>The vulnerability, which allows attackers with a FortiCloud account and a registered device to log into devices registered to other accounts, was exploited by two malicious FortiCloud accounts that Fortinet said it blocked Jan. 22. Attackers have reconfigured firewall settings on FortiGate devices, created unauthorized accounts and changed virtual private network configurations to gain access to new accounts.<\/p>\n<p>The vendor said it disabled FortiCloud SSO Monday and re-enabled the service Tuesday with controls in place to prevent logins to devices running vulnerable software versions.<\/p>\n<p>Fortinet\u2019s advisory brings some clarity and raises new questions for defenders and researchers that have encountered problems on Fortinet devices since December. The vendor disclosed a pair of similar critical&#8230;<\/p>\n<p><a href=\"https:\/\/cyberscoop.com\/ortinet-zero-day-cve-2026-24858-forticloud-sso-auth-bypass\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Fortinet\u2019s latest zero-day vulnerability carries frustrating familiarities for customers https:\/\/cyberscoop.com\/ortinet-zero-day-cve-2026-24858-forticloud-sso-auth-bypass\/ Publish Date: 2026-01-28 17:35:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":207544,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2024\/10\/GettyImages-1670649574.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24,27],"class_list":["post-207543","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/207543"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=207543"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/207543\/revisions"}],"predecessor-version":[{"id":207545,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/207543\/revisions\/207545"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/207544"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=207543"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=207543"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=207543"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}