Device type
Firewall coverage should lead with urgency, exploitability, and clear fixed-version guidance.
This page is grounded in the current research notes and official-source dataset, then organized into a cleaner public landing page. Fortinet still leads on urgency; Zyxel adds useful vendor breadth with official fixed-version guidance; Cisco Secure Firewall now has a source-quality watch page so the firewall category can expand without pretending Cisco coverage is deeper than it is.
| Vendor | Update | Fixed version(s) | Published | Source |
|---|---|---|---|---|
| Zyxel USG FLEX H / uOS | Zyxel USG FLEX H privilege escalation security update Zyxel published a USG FLEX H firewall advisory covering incorrect permission assignment and improper privilege management issues that could let a local attacker escalate privileges; the vendor says patched uOS builds are available. | uOS V1.32 | 2025-04-22 | Official source ↗ |
| Fortinet FortiOS administrative interface | FG-IR-24-535 authentication bypass using alternate path/channel Fortinet disclosed an authentication bypass that could allow a remote attacker to gain super-admin privileges via crafted requests to the Node.js websocket module or crafted CSF proxy requests; the vendor said it was being exploited in the wild. | FortiOS 7.0.17+ | 2025-03-31 | Official source ↗ |
| Fortinet FortiOS SSL-VPN | FG-IR-24-015 SSL-VPN out-of-bounds write Fortinet said an out-of-bounds write in FortiOS and FortiProxy could allow remote unauthenticated code execution via crafted HTTP requests and noted potential exploitation in the wild. | 7.4.3+ 7.2.7+ 7.0.14+ 6.4.15+ | 2025-01-15 | Official source ↗ |