Category: Fortinet

Mar 07

Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001

By Christopher GLEMOT in CERT, Cybersecurity, Fortinet, Security, Zero Day

Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001: Fortinet has just announced a critical vulnerability in all versions. A buffer underwrite (‘buffer underflow’) vulnerability in FortiOS & FortiProxy administrative interface may allow a remote unauthenticated attacker to execute arbitrary code on the device and/or perform a DoS on the GUI, via specifically crafted requests. The impact …

Blue Team, CVE-2023-25610, DoS, FG-IR-23-001, Fortinet, Infosec

Dec 12

Critical Fortigate VPN SSL Vulnerability – CVE-2022-42475

By Christopher GLEMOT in CERT, Cybersecurity, Fortinet, Security, Zero Day

Updated on Tuesday 13, December – Affected versions. Critical VPN SSL Vulnerability (FortiOS): Fortinet has just announced a critical vulnerability in all versions. Vulnerabilities that can be easily exploited remotely to compromise firewall or where remote code execution is considered likely in common situations. Manipulate the dynamic resources of some processes, the goal is to …