Fortinet, Ivanti, and Intel released security updates addressing dozens of vulnerabilities, including high-severity flaws that could allow remote code execution, privilege escalation, or protection bypasses. The fixes cover multiple products such as FortiWeb, FortiSwitchAXFixed, FortiManager, FortiClientLinux, Ivanti DSM, and Intel UEFI firmware, and none of the reported issues appear to have been exploited in the wild. #Fortinet #Ivanti #Intel #FortiWeb #FortiClientLinux #UEFI
Keypoints
- Fortinet issued patches for 22 defects including high-severity issues in FortiWeb, FortiSwitchAXFixed, FortiManager, and FortiClientLinux.
- Some Fortinet flaws could be exploited remotely without authentication to bypass rate limits or execute unauthorized code.
- The FortiClientLinux symlink vulnerability could allow local attackers to escalate privileges to root.
- Ivanti fixed a high-severity privilege-escalation bug in DSM before version 2026.1.1 with no known in-the-wild exploitation.
- Intel released UEFI firmware updates for over 45 processor models addressing nine vulnerabilities, including five high-severity issues that could enable local code execution and data disclosure.
Read More: https://www.securityweek.com/fortinet-ivanti-intel-patch-high-severity-vulnerabilities/