https://cve.circl.lu/comments/feed 2025-02-23T13:33:47.185975+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent comments. https://cve.circl.lu/comment/c2248f9d-e2e0-4af2-a57c-e3b393cffb55 2025-02-23T13:33:47.190817+00:00 Alexandre Dulaunoy http://cvepremium.circl.lu/user/adulau UPDATE: Fortinet has informed us that the new CVE-2025-24472 flaw added to FG-IR-24-535 today is not a zero-day and was already fixed in January, but not disclosed then. Furthermore, even though the current advisory states that the listed flaws were exploited in attacks and includes workarounds, Fortinet says that only CVE-2024-55591, and not CVE-2025-24472. It appears that this new CVE is for a different pathway to exploiting the bug that was not previously disclosed and was just now added to the Fortinet advisory about the active exploitation of CVE-2024-55591, causing the confusion. We have updated this previous toot, changed the title of our article, and added an update to prevent confusion. Ref: https://infosec.exchange/@BleepingComputer/113986777248862223 2025-02-12T05:40:06.836557+00:00