Fortinet reports recent real-world abuse of FG-IR-19-283 / CVE-2020-12812, a FortiOS/FortiGate SSL VPN issue first patched in July 2020, where attackers can bypass FortiToken-based 2FA in certain LDAP-backed configurations. The core condition is a mismatch in username case-sensitivity (FortiGate treats usernames as case-sensitive by default while many LDAP directories do not), which can allow authentication to succeed without prompting for a second factor when the username casing is altered. Fortinet’s latest advisory emphasizes this is being exploited based on specific configurations, rather than being universally exploitable on every FortiGate with SSL VPN enabled. Technically, the bypass can occur when an organization has local user entries on the FortiGate with 2FA enabled that reference LDAP, those same users are members of an LDAP group, and that LDAP group is configured/used in an authentication policy (e.g., SSL VPN, IPsec VPN, or admin authentication). In Fortinet’s example, logging in as jsmith matches the local 2FA user and prompts for a token, but logging in as Jsmith (or other casing variants) fails the local match and can fall through to other configured authentication policies (including a “secondary” LDAP group), allowing authentication without 2FA if credentials are valid.

Impact: In impacted configurations, CVE-2020-12812 can undermine 2FA protections for VPN and/or administrative access by letting an attacker authenticate with only the primary credential (e.g., AD/LDAP password) when username casing differs from the local FortiGate user entry. Practically, this increases the likelihood of unauthorized remote access where organizations rely on SSL VPN plus FortiToken 2FA as a primary control; once access is obtained, follow-on activity may include internal reconnaissance, credential access, configuration changes, and broader network compromise depending on the account’s privileges and segmentation controls. Fortinet notes that if this behavior has occurred, organizations should treat the system configuration as potentially compromised and reset relevant credentials.

Recommendation: Organizations should first confirm whether they meet the specific prerequisite conditions for exploitation, including the use of local FortiGate users with 2FA that reference LDAP, membership of those users in LDAP groups, and the presence of LDAP groups in active authentication policies (SSL VPN, IPsec VPN, or administrative access). Where applicable, systems should be upgraded to FortiOS versions that include the July 2020 mitigation (6.0.10, 6.2.4, 6.4.1, or later supported releases), and username case sensitivity should be explicitly disabled (username-sensitivity disable) to prevent authentication fall-through caused by casing mismatches. Administrators should review and remove unnecessary secondary LDAP group configurations that may be used when local authentication fails, as Fortinet has identified this as a contributing factor in observed abuse. From a monitoring and response perspective, teams should review VPN and administrative authentication logs for successful logins that bypass expected 2FA workflows or show repeated username casing variations, and investigate any anomalous access patterns. If abuse is suspected, Fortinet advises treating the device configuration as potentially compromised, rotating VPN and directory credentials, reviewing recent configuration changes, and tightening management access paths as part of incident containment and recovery.

A severe vulnerability in MongoDB Server, tracked as MongoBleed (CVE-2025-14847), is being actively exploited in the wild with more than 80,000 exposed instances identified on the public internet, according to reporting by BleepingComputer. The flaw results from improper handling of zlib-compressed network packets: rather than returning the length of decompressed data, MongoDB may reveal portions of in-memory buffers. Because compression happens before authentication, attackers can trigger this behavior with no credentials simply by sending a malformed query and begin leaking sensitive information including credentials, API keys, session tokens, internal logs, and configuration data. Public proof-of-concept exploit code has been confirmed usable by researchers, and platforms like Wiz report that a significant fraction of visible cloud environments run vulnerable MongoDB versions. Exploitation appears opportunistic, and unverified claims suggest threat actors have used the vulnerability in other high-profile breaches. Vendors have released patches for all supported branches, but many self-hosted deployments remain unprotected and susceptible to remote data leakage if reachable from the internet.

Impact: Successful exploitation may result in exposure of sensitive in-memory secrets, including database usernames and passwords (stored in plaintext in memory), cloud credentials (e.g., AWS access keys), API tokens, session material, configuration data, internal paths, and potentially PII. Given the pre-auth nature of the vulnerability, any exposed MongoDB instance running an affected version should be considered potentially compromised. Beyond data theft, leaked credentials can enable secondary compromise, including lateral movement, cloud account abuse, data exfiltration, or follow-on ransomware and extortion activity.

Recommendation: Organizations running affected MongoDB Server versions should immediately upgrade to a fixed release (8.2.3, 8.0.17, 7.0.28, 6.0.27, 5.0.32, or 4.4.30). Because MongoBleed allows unauthenticated memory disclosure prior to authentication, defenders should assume that secrets may already be exposed on any internet-facing vulnerable instance. After patching, all database credentials, application secrets, API keys, cloud access keys, and session tokens associated with affected MongoDB workloads should be rotated as a precautionary measure. MongoDB instances should be removed from public internet exposure and restricted behind firewalls, private networking, or strict IP allowlists. Where immediate patching is not possible, administrators should temporarily disable zlib compression on the server to reduce exposure.

A critical serialization injection vulnerability has been disclosed in LangChain, affecting dumps() and dumpd() functions in langchain-core. The flaw stems from improper escaping of user-controlled dictionaries containing lc keys, which LangChain internally uses to identify serialized objects. When such data is later deserialized with load() or loads(), attacker-supplied structures are treated as legitimate LangChain objects rather than plain data, enabling object injection within trusted namespaces. This issue impacts versions <1.2.5 (>=1.0.0) and <0.3.81 and has been assigned CVE-2025-68664 with a CVSS 3.1 score of 10.0. In vulnerable configurations, attackers can exploit this behavior through user-influenced fields such as additional_kwargs, response_metadata, or cached LLM outputs, including streaming paths like astream_events(version=”v1″) and Runnable.astream_log(). When secrets_from_env is enabled (the previous default), crafted payloads can extract environment variables during deserialization. Beyond secret exposure, the bug allows instantiation of Serializable subclasses within LangChain’s trusted namespaces, potentially triggering side effects such as network calls or file operations, depending on class behavior.

Impact: Successful exploitation can result in exposure of sensitive environment secrets (for example API keys) and unintended object instantiation during normal application workflows that trust their own serialization output. Because LLM responses and metadata can be influenced via prompt injection, the attack surface is broader than direct user input, increasing risk in production systems that rely on streaming, caching, or message history features.

Recommendation: Upgrade to patched versions langchain-core 1.2.5 or 0.3.81. Review applications for any deserialization of untrusted data and avoid enabling secrets_from_env unless explicitly required. Use the new allowed_objects allowlist to restrict deserializable classes and keep the default init_validator enabled to block Jinja2 templates unless serialized data is fully trusted. Audit usage of vulnerable APIs such as astream_events(version=”v1″), legacy caches, and message history loaders, and migrate to safer alternatives (for example version=”v2″) where applicable.