Critical Zero-Day Vulnerability in Fortinet Products Exploited to Hijack Firewalls and Create Unauthorized Admin Accounts

A critical zero-day vulnerability (CVE-2026-24858) affecting Fortinet products has been exploited by attackers to reconfigure firewall settings and create unauthorized accounts with privileged access. The flaw impacts multiple versions of the vendor’s security solutions, particularly through an authentication bypass (SSO) in FortiCloud. The consequences include the compromise of network edge devices. No specific dates for exploitation or disclosure have been mentioned.