Security News Fortinet blocks exploited FortiCloud SSO zero day until patch is ready BleepingComputer Daniel Bender 27 Jan 2026 Fortinet has confirmed a new, actively exploited critical FortiCloud single sign-on (SSO) authentication bypass vulnerability, tracked as CVE-2026-24858, and says it has mitigated the zero-day attacks by blocking FortiCloud SSO connections from devices running vulnerable firmware versions.
