A critical flaw affects Fortinet FortiOS and FortiProxy, patch it now!

March 9, 2023
Post Author / Publisher: security affairs

CISO2CISO post categories: 0 - CT, 0 - CT - Cybersecurity Vendors - Fortinet, Cyber Security News, SecurityAffairs

Rate this post

Fortinet addressed a critical heap buffer underflow vulnerability affecting FortiOS and FortiProxy, which can lead to arbitrary code execution.

Fortinet addressed a critical buffer underwrite (‘buffer underflow’) vulnerability, tracked as CVE-2023-25610 (CVSS v3 9.3), that resides in the administrative interface in FortiOS and FortiProxy. A remote, unauthenticated attacker can exploit the vulnerability to execute arbitrary code on the vulnerable device and trigger a DoS condition on the GUI, by sending specifically crafted requests.

The vulnerability affects the following products:

FortiOS version 7.2.0 through 7.2.3

FortiOS version 7.0.0 through 7.0.9

FortiOS version 6.4.0 through 6.4.11

FortiOS version 6.2.0 through 6.2.12

FortiOS 6.0, all versions

FortiProxy version 7.2.0 through 7.2.2

FortiProxy version 7.0.0 through 7.0.8

FortiProxy version 2.0.0 through 2.0.11

FortiProxy 1.2, all versions

FortiProxy 1.1, all versions

The security vendor released the following updates to address the issue:

FortiOS version 7.4.0 or above

FortiOS version 7.2.4 or above

FortiOS version 7.0.10 or above

FortiOS version 6.4.12 or above

FortiOS version 6.2.13 or above

FortiProxy version 7.2.3 or above

FortiProxy version 7.0.9 or above

FortiProxy version 2.0.12 or above

FortiOS-6K7K version 7.0.10 or above

FortiOS-6K7K version 6.4.12 or above

FortiOS-6K7K version 6.2.13 or above

The company announced that it is not aware of attacks in the wild exploiting this vulnerability.

The advisory includes a list of models for which the flaw’s exploitation can only trigger a DoS condition.

Fortinet also provides a workaround for the flaw, the company recommends disabling the HTTP/HTTPS administrative interface or limiting the IP addresses that can reach the administrative interface.

The security vendor acknowledged Kai Ni from the Burnaby InfoSec team for reporting the flaw.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, FortiOS)

The post A critical flaw affects Fortinet FortiOS and FortiProxy, patch it now! appeared first on Security Affairs.

Read MoreSecurity Affairs

CISO2CISO post categories: 0 - CT, 0 - CT - Cybersecurity Vendors - Fortinet, Cyber Security News, SecurityAffairs

Digital Forensics and Incident Response (DFIR) Framework for Operational Technology (OT) by NIST – Eran Salfati and Michael Pease

Digital Forensics and Incident Response...

State of the CISO – a global report on priorities , pain points, and security gaps 2023 by SALT

State of the CISO –...

How Much 10 Companies Paid Their Virtual CISO Service in 2022 Benchmark by Nathaniel Cole

How Much 10 Companies Paid...

Secure Software Development Lifecycle Fundamentals by Codrut Andrei

Secure Software Development Lifecycle Fundamentals...

Tushar Subhra Dutta

Top 10 Cyber Attack Maps to See Digital Threats 2022 by Tushar Subhra Dutta – Cyber Security News.

Top 10 Cyber Attack Maps...

Personal Cyber Security First Steps by Australian Government – ACSC

Personal Cyber Security First Steps...

Marcos Jaimovich

Why do we compare a SOC (Security Operations Center) with the cockpit of a commercial airplane? by Marcos Jaimovich

Why do we compare a...

Security Operations Center (SOC) – Tools for Operations Development by Joas Antonio

Security Operations Center (SOC) –...

Incident Response Playbooks & Workflows Ready for use in your SOC & Redteams

Incident Response Playbooks & Workflows...

396 Use Cases & Siem Rules Code ready for use for Mitre Attacks Events Detection in Your SOC by Logpoint

396 Use Cases & Siem...

Forrester - Allie Mellen

Adapt Or Die: XDR Is On A Collision Course With SIEM And SOAR – EDR Is Dead, Long Live XDR by Allie Mellen – Forrester

Adapt Or Die: XDR Is...

CYBER LEADERSHIP INTITUTE

CISO PLAYBOOK: FIRST 100 DAYS Setting the CISO up for success

CISO PLAYBOOK: FIRST 100 DAYS...

National Security Agency

CSI Cloud Top10 Key Management

CSI Cloud Top10 Key Management

CSA Cloud Security Alliance

Defining the Zero TrustProtect Surface

Defining the Zero TrustProtect Surface

CONTAINER SECURITY INTERVIEW QUESTIONS ANSWERS

CONTAINER SECURITY INTERVIEW QUESTIONS ANSWERS

PRACTICE GUIDE GDPR – SECURITY OF PERSONAL DATA Version 2024

PRACTICE GUIDE GDPR – SECURITY...

Cloud Security Engineer Roadmap

Cloud Security Engineer Roadmap

tutorialspoint.com

Cloud Computing Tutorial Simply Easy Learning

Cloud Computing Tutorial Simply Easy...

SMITHA SRIHARSHA

CISSP Preparation Notes

CISSP Preparation Notes

CISSP Mind Map: All Domains

CISSP Mind Map: All Domains

CIS 18 CRITICAL SECURITY CONTROLS CHECKLIST

CIS 18 CRITICAL SECURITY CONTROLS...

CI-CD with Docker and Kubernetes

CI-CD with Docker and Kubernetes

BUSINESS CONTINUITY PLAN & DISASTER RECOVERY PLAN TEMPLATE

BUSINESS CONTINUITY PLAN & DISASTER...

Building a risk-resilient organisation

Building a risk-resilient organisation

40 under 40 in CyberSecurity 2024

40 under 40 in CyberSecurity 2024

40 Days in DeepDark Web About Crypto Scam

40 Days in DeepDark Web About Crypto Scam

8 Principles of Supply Chain Risk Management

8 Principles of Supply Chain Risk Management

Threat Hunter’s Handbook – Using Log Analytics to Find and Neutralize Hidden Threats in Your Environment

Threat Hunter’s Handbook – Using Log Analytics to Find and Neutralize Hidden Threats in Your Environment

The Hunters Handbook Endgame’s Guide to Adversary Hunting

The Hunters Handbook Endgame’s Guide to Adversary Hunting

THE EU’S MOST THREATENING by EUROPOL

THE EU’S MOST THREATENING by EUROPOL

National Cyber Security Centre

Responding to a cyber incident – a guide for CEOs

Responding to a cyber incident – a guide for CEOs

IGNITE Technologies

CREDENTIAL DUMPING

CREDENTIAL DUMPING

Pwning the Domain Lateral Movement

Pwning the Domain Lateral Movement

Jorgen Lanesskog

PING Basic IP Network Troubleshooting

PING Basic IP Network Troubleshooting

Layer 7 Visibility What are the Benefits?

Layer 7 Visibility What are the Benefits?

Introduction to Kubernetes Networking and Security

Introduction to Kubernetes Networking and Security

Department of Defense's (DoD)

Defense Industrial Base Cybersecurity Strategy 2024

Defense Industrial Base Cybersecurity Strategy 2024

Zero Trust Access for Dummies Fortinet

Zero Trust Access for Dummies Fortinet

Homeland Security

Zero Trust Implementation Strategy

Zero Trust Implementation Strategy

National Australia Bank Limited

Your Business and Cyber Security

Your Business and Cyber Security

Xeno RAT- A New Remote Access Trojan

Xeno RAT- A New Remote Access Trojan

IGNITE Technologies

Windows Persistence COM Hijacking MITRE T1546 015

Windows Persistence COM Hijacking MITRE T1546 015

IGNITE Technologies

Windows Exploitation Rundll32

Windows Exploitation Rundll32

IGNITE Technologies

Windows Exploitation Msbuild

Windows Exploitation Msbuild

Web LLM Attacks

Web LLM Attacks

Trended Protocols for Security Stuff

Trended Protocols for Security Stuff

Red Iberoamericana de Protección de Datos

Transferencia Internacional de Datos Personales – Guia de Implementación

Transferencia Internacional de Datos Personales – Guia de Implementación

TRACKING RANSOMWARE January 2024

TRACKING RANSOMWARE January 2024

https://www.linkedin.com/in/harunseker/

TOP Cyber Attacks Detected by SIEM Solutions

TOP Cyber Attacks Detected by SIEM Solutions

Top 100 Cyber Threats and Solutions 2024

Top 100 Cyber Threats and Solutions 2024

Top 50 Cybersecurity Threats

Top 50 Cybersecurity Threats

Top 10 Considerations for Incident Response

Top 10 Considerations for Incident Response