Tag: CVE-2020-12812

Fortinet has warned administrators that real-world attacks are once again exploiting the vulnerability FG-IR-19-283 (CVE-2020-12812), first disclosed in July 2020. Under certain FortiGate configurations, the flaw allows attackers to bypass two-factor authentication and log in as if 2FA did not exist at all. The company has outlined the mechanics of the bypass and explained how…