Fortinet has released a patch to address a critical security flaw in its FortiGate firewall that can be exploited by threat actors to execute code remotely.
Vulnerabilities are tracked as CVE-2023-27997Lexfo security researcher Charles Fol, who discovered and reported the flaw, said that “pre-authentication is reachable on all SSL VPN appliances.” Said Weekend tweet.
Details about this security flaw are not currently public, and Fortinet has yet to issue an advisory, but the network security firm is expected to release more details in the coming days.
French cybersecurity firm Olympe Cyberdefense said in an independent alert that the issue has been patched in versions 6.2.15, 6.4.13, 7.0.12 and 7.2.5.
“This flaw allows hostile agents to interfere via VPN even when MFA is enabled,” the company said.
As Fortinet flaws have emerged as a lucrative attack vector for threat actors in recent years, users are strongly encouraged to act quickly to apply fixes as soon as possible to mitigate potential risks. increase.
This development was announced by Cisco and VMware to address critical vulnerabilities affecting Expressway Series and TelePresence Video Communication Server (VCS) and Aria Operations for Networks, respectively, which could lead to privilege escalation and code execution. It was done in response to the release.
Fortinet shared the following statement with HackerNews after the article was published.
Timely and ongoing communication with our customers is a key factor in maximizing the protection and security of your organization. Confidential advance customer communications may include early warning of the advisory so that customers can further strengthen their security posture before the advisory is released to a wider audience. This process follows responsible disclosure best practices and ensures that our clients have the timely information they need to make informed, risk-based decisions. For more information on Fortinet’s responsible disclosure process, please visit the Fortinet Product Security Incident Response Team (PSIRT) page. https://www.fortiguard.com/psirt_policy.
