Over 49,000+ Fortigate SSL VPN appliances have been found online, that are vulnerable to a one-line code exploitation using path traversal vulnerability. This vulnerability is being referred to as CVE-2018-13379. It is critical vulnerability as it provides unauthenticated remote access to the file system via specially crafted HTTP requests.

The hacker also claims to have cleartext credentials of these vulnerable IPs.

Fortigate has referred customers to their PSIRT advisory posted on their blog here .

We encourage everyone to patch their Fortigate appliances as per the instructions on Fortigate blog immediately.