Any Palo Alto or Fortinet security users?

If you’re using their products, you’ll want to see if these issues affect you.

Nothing like encoding encryption keys into the binary… or having a set of vulnerabilities that allow for remote execution of code on a firewall at root-level. EEEK!

RJ

The truly scary part is how many PAN firewalls have their management interface exposed to the internet. I wouldn’t even leave one open to all internal corporate addresses.

It smacks of lazy people managing remote office branches…

Except that pretty much any PAN firewall is generally too expensive for a branch office, unless the branch and the company are both big enough to know better.