fortinet

Patch This Week: Two Fortinet CVEs Due Tomorrow, Six More Due April 27, and NIST Changed How NVD Works

John Z Black Apr 15, 2026

Vulnerabilities & Patching #vulnerability-management #cisa-kev #nist #nvd #fortinet #showdoc #google-pixel #patch-management #cve

Two Fortinet CVEs have a federal remediation deadline of April 16. A separate six-CVE batch is due April 27. NIST restructured NVD prioritization because CVE volume is up 30%. And 2,000+ ShowDoc servers are still unpatched.

Your 2012 Security Debt Is Someone Else's 2026 Attack Vector

John Z Black Apr 13, 2026

Vulnerabilities & Patching #cisa #kev #cve #patch-management #exchange-server #fortinet #legacy-vulnerabilities #ransomware

CISA added seven CVEs to its Known Exploited Vulnerabilities catalog. One of them was first patched in 2012. Attackers don't need zero-days when your backlog does the work for them.

Update Chrome Now. Update FortiClient Now. Here's Why.

John Z Black Apr 6, 2026

Vulnerabilities & Patching #chrome #fortinet #zero-day #cve-2026-5281 #cve-2026-35616 #cisa-kev #patch-advisory

Two critical vulnerabilities are being actively exploited right now: a Chrome WebGPU zero-day and a Fortinet pre-auth privilege escalation, and both have patches available today.

Three Vendors, Three Critical Bugs, All Exploited This Week: The Edge Device Emergency

John Z Black Mar 31, 2026

Vulnerabilities & Patching #f5 #big-ip #citrix #netscaler #fortinet #forticlient-ems #cisa-kev #rce #cve #patch #perimeter-security

F5 BIG-IP, Citrix NetScaler, and Fortinet FortiClient EMS all have critical vulnerabilities under active exploitation this week. Here's what happened and what you need to do right now.