Threat advisories

Top Middle East Cyber Threats – January 28th, 2025  

Jan-2025 2 min to read

At Help AG, our Managed Security Services (MSS) team offers 24x7x365 monitoring of complex IT security infrastructures to some of the largest enterprises in the region. As a result, we have our eyes keenly fixed on the cybersecurity threat landscape and are among the first in the region to learn and act upon new threats.

Fortinet Addresses Critical Vulnerabilities with Security Update

Fortinet has released a security update to address multiple vulnerabilities in its products, including FortiOS, FortiAnalyzer, FortiAP, FortiManager, FortiWeb, FortiProxy, FortiPAM, FortiSwitch, FortiClient Windows, and FortiClient EMS.

This update includes 2 critical, 12 high, 12 medium, and 3 low-severity vulnerabilities. Below is a list of the most severe identified vulnerabilities:

[Critical] CVE-2024-55591 – Authentication Bypass in Node.js WebSocket Module

An Authentication Bypass Using an Alternate Path or Channel vulnerability affecting FortiOS and FortiProxy could allow a remote attacker to gain super-admin privileges via crafted requests to the Node.js WebSocket module. FortiGuard is aware of incidents where CVE-2024-55591 has been exploited in the wild.

[Critical] – Hardcoded Session Secret Leading to Unauthenticated Remote Code Execution

A hard-coded cryptographic key vulnerability in FortiSwitch could allow a remote, unauthenticated attacker in possession of the key to execute unauthorized code via crafted cryptographic requests.

RECOMMENDATIONS

Ensure all systems are patched and updated.

Google Addresses Critical Vulnerabilities in Chrome Browser

Google has released a security update to address multiple vulnerabilities in the Chrome browser, now resolved in the latest version (132.0.6834.110/111 for Windows and Mac, and 132.0.6834.110 for Linux).

The update includes three security fixes, two of which were reported by external researchers. Both externally reported vulnerabilities are rated as High severity and affect the V8 engine component:

High CVE-2025-0611: Object corruption in V8.
High CVE-2025-0612: Out-of-bounds memory access in V8.

At the time of releasing the advisory, none of the vulnerabilities were known to have been exploited in the wild.

RECOMMENDATIONS

Ensure all systems are patched and updated.

Oracle Addresses Multiple Vulnerabilities in January 2025 Critical Patch Update

The update includes 318 security patches across various Oracle product families. Of the vulnerabilities addressed, 30 are classified as critical, 103 as high, 180 as medium, and 5 as low in severity. Several of these vulnerabilities can be exploited remotely without authentication. A remote attacker leveraging these vulnerabilities could perform unauthorized operations, such as the deletion or falsification of sensitive information.

RECOMMENDATIONS