COVID-19疫情持續升溫,許多企業紛紛籌備遠距上班的方案,其中最常見的方法為透過VPN讓員工可以連線回公司存取企業內部資源,但在開放VPN服務前,小編提醒大家記得先檢查一下VPN設備是否有完成漏洞更新,避免服務開放後又掀起另一波災情。
OpenVPN:CVE-2019-14899
https://securityboulevard.com/2019/12/statement-from-protonvpn-regarding-cve-2019-14899/
Fortigate:CVE-2018-13379 (FG-IR-18-384) 及CVE-2018-13383 (FG-IR-18-388)
https://kb.fortinet.com/kb/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=FD46513
CISCO:CVE-2019-12677
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-asa-ssl-vpn-dos