CMMC RPO Integrates Managed IT, Cybersecurity, and CMMC Advisory for the Defense Industrial Base

Systems Engineering is aware of the Fortinet FortiOS, FortiManager, and FortiAnalyzer affecting multiple versions of these products.

Fortinet rates these vulnerabilities as HIGH.

Systems Engineering is aware of the Fortinet FortiManager missing authentication for critical function vulnerability in the fgfmd process, CVE-2024-47575. Reports have shown this vulnerability to be exploited in the wild.

The following is provided for reference purposes and to inform clients as to which versions of these common products are supported by the manufacturer and therefore covered under our service terms.

The need for cyber risk management is growing exponentially. The threat of cybersecurity risks within small—to medium-sized businesses (SMBs) keeps many business leaders up at night. The business-wide disruption that a successful cyberattack brings and the increasing number of SMBs falling victim to cybercrime each year mean cyber risk can no longer solely be the responsibility of IT.

With digital transformation a necessity, cybersecurity threats accelerating, and compliance requirements evolving, having resources that can tackle the complexities of decision-making and investment for these major issues and initiatives is essential. It can become overwhelming for an executive leader or IT staff to bear the entire burden of making choices that span security, vendor management, and technology adoption.   

Late yesterday, DigiCert announced a critical incident involving the revocation of a subset of TLS/SSL certificates due to a domain control verification (DCV) issue. While necessary to maintain security standards, this action could potentially disrupt services for some organizations that rely on DigiCert certificates to secure public and private web services.