Post #8295

🔧 Fortinet issues patch update for actively exploited FortiOS SSO flaw. The fix addresses CVE-2026-24858 (CVSS 9.4), an SSO authentication bypass that can allow cross-tenant device access when FortiCloud SSO is enabled. CISA has added the issue to its KEV list, setting a Jan 30 remediation deadline. 🔗 Details → https://thehackernews.com/2026/01/fortinet-patches-cve-2026-24858-after.html