A hacker has posted a list of one-line exploits to steal VPN credentials from almost 50,000 Fortinet VPN devices. The vulnerability is CVE-2018-13379, a path traversal flaw impacting a large number of unpatched Fortinet FortiOS SSL VPN devices, according to researchers. The vulnerable targets included government domains from around the world, and those belonging to well-known banks and finance companies. Fortinet has issued a statement with regards to this vulnerability: “The security of our customers is our first priority”””
Source: https://www.bleepingcomputer.com/news/security/hacker-posts-exploits-for-over-49-000-vulnerable-fortinet-vpns/