React2Shell is a critical unauthenticated remote code execution (RCE) vulnerability affecting React Server Components (RSC) and frameworks that implement the Flight protocol, including specific vulnerable versions of Next.js. A remote attacker can craft a malicious RSC request that triggers server-side deserialization, leading to arbitrary code execution without authentication or user interaction.

FortiMail 7.2.9 B0430 and release notes are available for download from the Support site : https://support.fortinet.com

FortiAP-U 7.0.6 B0159 and release notes are available for download from the Support site : https://support.fortinet.com

FortiOS 7.6.5 B3651 and release notes are available for download from the Support site : https://support.fortinet.com

FortiAuthenticator 6.6.8 B1890 and release notes are available for download from the Support site : https://support.fortinet.com

FortiMail 7.4.6 B0620 and release notes are available for download from the Support site : https://support.fortinet.com

FortiMonitorOnSight 7.2.9 B0018 and release notes are available for download from the Support site : https://support.fortinet.com

FortiClient 7.4.5 B1949 and release notes are available for download from the Support site : https://support.fortinet.com

FortiClientMac 7.4.5 B1888 and release notes are available for download from the Support site : https://support.fortinet.com

FortiClientLinux 7.4.5 B1835 and release notes are available for download from the Support site : https://support.fortinet.com

FortiClientEMS 7.4.5 B2111 and release notes are available for download from the Support site : https://support.fortinet.com

FortiGuest 2.4.2 B0520 and release notes are available for download from the Support site : https://support.fortinet.com

FortiAIOps 3.2.0 B0139 and release notes are available for download from the Support site : https://support.fortinet.com

FortiADC 8.0.2 B0056 and release notes are available for download from the Support site : https://support.fortinet.com

FortiWeb 8.0.3 B0086 and release notes are available for download from the Support site : https://support.fortinet.com

FortiManager 7.6.5 B3653 and release notes are available for download from the Support site : https://support.fortinet.com

FortiAnalyzer 7.6.5 B3653 and release notes are available for download from the Support site : https://support.fortinet.com

FortiNACAgent 7.6.3 B0039 and release notes are available for download from the Support site : https://support.fortinet.com

Critical zero-day vulnerabilities affecting Cisco Secure Firewall Adaptive Security Appliance (ASA) and Cisco Secure Firewall Threat Defense (FTD) software have been actively exploited in the wild. The campaign is widespread and involves exploiting zero-day vulnerabilities to gain unauthenticated remote code execution on ASAs, as well as manipulating read-only memory (ROM) to persist through reboot and system upgrade. This activity presents a significant risk to victim networks.

FortiVoice 7.4.0 B0675 and release notes are available for download from the Support site : https://support.fortinet.com

FortiSwitch 7.6.6 B1137 and release notes are available for download from the Support site : https://support.fortinet.com