CVE-2023-27997

Name of the Vulnerable Software and Affected Versions Fortinet FortiOS versions prior to 7.2.5 Fortinet FortiOS versions prior to 7.0.12 Fortinet FortiOS versions prior to 6.4.13 Fortinet FortiOS versions prior to 6.0.16 Fortinet FortiProxy versions prior to 7.2.3 Fortinet FortiProxy versions prior to 7.0.9 Fortinet FortiProxy versions prior to 2.0.12 Fortinet FortiProxy version 1.1 Fortinet FortiProxy version 1.2

Description A heap-based buffer overflow vulnerability exists in FortiOS and FortiProxy SSL-VPN. This flaw may allow a remote, unauthenticated attacker to execute arbitrary code or commands by sending specifically crafted requests. Approximately 330,000 FortiGate firewalls were reported as unpatched as of July 2023. Exploitation of this vulnerability has been observed, and exploit code is publicly available. The vulnerability is reachable without authentication on every SSL VPN appliance. Reports indicate that threat actors may be leveraging this vulnerability, potentially linked to Chinese state-sponsored hackers, to target government and critical infrastructure. The vulnerability allows for remote code execution.

Recommendations FortiOS versions prior to 7.2.5: Update to version 7.2.5 or later. FortiOS versions prior to 7.0.12: Update to version 7.0.12 or later. FortiOS versions prior to 6.4.13: Update to version 6.4.13 or later. FortiOS versions prior to 6.0.16: Update to version 6.0.16 or later. FortiProxy versions prior to 7.2.3: Update to version 7.2.3 or later. FortiProxy versions prior to 7.0.9: Update to version 7.0.9 or later. FortiProxy versions prior to 2.0.12: Update to version 2.0.12 or later. FortiProxy version 1.1: Update to a newer version. FortiProxy version 1.2: Update to a newer version.