b2b-daily
Home | IT | Cyber Security

Fortinet Rolls Out Patches for Severe FortiClientLinux Flaw

Avatar photo
by Craig Anderson
April 12, 2024
Fortinet Rolls Out Patches for Severe FortiClientLinux Flaw

Fortinet, a leader in network security, has issued important patches to address a dangerous flaw found in its FortiClientLinux offering, designated as CVE-2023-45590. With a high severity score of 9.4, the vulnerability poses significant risks, as it could allow attackers to inject code and execute it remotely. This threat becomes active when users visit a malicious site while running the affected software.

The security lapse affects FortiClientLinux versions from 7.0.3 to 7.0.4 and from 7.0.6 to 7.0.10, as well as the singular version 7.2.0. Users are urged to update their software to either version 7.0.11 or 7.2.1 to guard against potential attacks. Discovered by researcher CataLpa from Dbappsecurity, the flaw is due to an improper Node.js configuration in the software.

This incident highlights the continuous struggle against cyber threats that exploit such vulnerabilities. In an ever-evolving digital landscape, such incidents serve as a stern reminder for organizations and users alike to stay vigilant and promptly apply security updates to safeguard their systems from such exploitable weaknesses.

Comprehensive Response to Multiple Security Challenges

Fortinet’s vigilant response to cyber threats has led to a comprehensive April 2023 security overhaul, which now includes macOS in addition to Linux. The focus was on rectifying vulnerabilities in the FortiClientMac installer, denoted as CVE-2023-45588 and CVE-2023-31492, each with a concerning CVSS score of 7.8. Concurrently, FortiOS and FortiProxy faced a critical issue identified by CVE-2023-41677, earning a CVSS score of 7.5, bringing to light a potential breach wherein administrator cookies could be compromised, potentially leading to unauthorized administrative control.

This update arrives without any direct evidence of these vulnerabilities being exploited, but it serves as a stark reminder of the relentless nature of cyber threats. IT administrators are urged to effectuate these security updates promptly, cementing the safeguarding of their digital infrastructures. In the game of cyber warfare, the offense is constantly evolving; in response, so must the defense, with timely and consistent updates serving as a key element in a robust cybersecurity protocol.

Information Security

Explore more

Agentic AI Redefines the Software Development Lifecycle
January 9, 2026

The quiet hum of servers executing tasks once performed by entire teams of developers now underpins the modern software engineering landscape, signaling a fundamental and irreversible shift in how digital products are conceived and built. The emergence of Agentic AI Workflows represents a significant advancement in the software development sector, moving far beyond the simple code-completion tools of the past.

Is AI Creating a Hidden DevOps Crisis?
January 9, 2026

The sophisticated artificial intelligence that powers real-time recommendations and autonomous systems is placing an unprecedented strain on the very DevOps foundations built to support it, revealing a silent but escalating crisis. As organizations race to deploy increasingly complex AI and machine learning models, they are discovering that the conventional, component-focused practices that served them well in the past are fundamentally

Agentic AI in Banking – Review
January 9, 2026

The vast majority of a bank’s operational costs are hidden within complex, multi-step workflows that have long resisted traditional automation efforts, a challenge now being met by a new generation of intelligent systems. Agentic and multiagent Artificial Intelligence represent a significant advancement in the banking sector, poised to fundamentally reshape operations. This review will explore the evolution of this technology,

Cooling Job Market Requires a New Talent Strategy
January 9, 2026

The once-frenzied rhythm of the American job market has slowed to a quiet, steady hum, signaling a profound and lasting transformation that demands an entirely new approach to organizational leadership and talent management. For human resources leaders accustomed to the high-stakes war for talent, the current landscape presents a different, more subtle challenge. The cooldown is not a momentary pause

What If You Hired for Potential, Not Pedigree?
January 9, 2026

In an increasingly dynamic business landscape, the long-standing practice of using traditional credentials like university degrees and linear career histories as primary hiring benchmarks is proving to be a fundamentally flawed predictor of job success. A more powerful and predictive model is rapidly gaining momentum, one that shifts the focus from a candidate’s past pedigree to their present capabilities and