top of page

New Fortinet PSIRT advisories released by Fortinet

Updated: Mar 14, 2023


 

Fortinet has released a new PSIRT (Product Security Incident Response Team) advisory reflecting several vulnerabilities.


Amongst the most impactful we can find a critical vulnerability that affects:


  • FortiOS version 7.2.0 through 7.2.3

  • FortiOS version 7.0.0 through 7.0.9

  • FortiOS version 6.4.0 through 6.4.11

  • FortiOS version 6.2.0 through 6.2.12

  • FortiOS 6.0 all versions

  • FortiProxy version 7.2.0 through 7.2.2

  • FortiProxy version 7.0.0 through 7.0.8

  • FortiProxy version 2.0.0 through 2.0.12

  • FortiProxy 1.2 all versions

  • FortiProxy 1.1 all versions


Summary of the vulnerability

A buffer underwrite ('buffer underflow') vulnerability in FortiOS & FortiProxy administrative interface may allow a remote unauthenticated attacker to execute arbitrary code on the device and/or perform a DoS on the GUI, via specifically crafted requests.

For more information about this vulnerability head over to Fortinet's website.


A complete list of March 2023 Vulnerability advisories can be found in Fortinet's website.


33 views

Recent Posts

See All

CISA Adds Two Known Exploited Vulnerabilities to Catalog

On April the 13th, CISA added two known vulnerabilities to their catalog. This time we can find a vulnerability that affects the Android Framework, by meanings of a Privilege Escalation Vulnerability.

Comments


Commenting has been turned off.
bottom of page