Property Abroad
Blog
Fortinet fixes critical bugs in FortiOS, FortiProxy and FortiClientEMS.

Fortinet fixes critical bugs in FortiOS, FortiProxy and FortiClientEMS.

Fortinet fixes critical bugs in FortiOS, FortiProxy and FortiClientEMS.

Fortinet has released security updates to fix critical code execution vulnerabilities in FortiOS, FortiProxy and FortiClientEMS. Fortinet released security updates this week to fix critical code execution vulnerabilities in FortiOS, FortiProxy and FortiClientEMS.

The first vulnerability

This is an off-array write issue, tracked as CVE-2023-42789 (CVSS score 9.3), it can be exploited to execute unauthorized code or commands by sending specially crafted HTTP requests to vulnerable devices. The vulnerability affects Fortinet FortiOS 7.4.0 - 7.4.1, 7.2.0 - 7.2.5, 7.0.0 - 7.0.12, 6.4.0 - 6.4.14, 6.2.0 - 6.2.15, FortiProxy 7.4.0, 7.2.0 - 7.2.6, 7.0.0 - 7.0.12, 2.0.0 - 2.0.13.

The manufacturer also fixed a buffer overflow vulnerability

This vulnerability is being tracked as CVE-2023-42790 (CVSS score 8.1). An attacker could exploit the vulnerability to execute unauthorized code or commands using specially crafted HTTP requests.

The vulnerability affects Fortinet FortiOS 7.4.0 - 7.4.1, 7.2.0 - 7.2.5, 7.0.0 - 7.0.12, 6.4.0 - 6.4.14, 6.2.0 - 6.2.15, FortiProxy 7.4.0, 7.2.0 - 7.2.6, 7.0.0 - 7.0.12, 2.0.0 - 2.0.13.

Both vulnerabilities were discovered by Gwendal Guégniaud of Fortinet's product security team.

The vendor has also fixed a critical widespread SQL injection issue, tracked as CVE-2023-48788 (CVSS score 9.3), in the DAS component. "Improper neutralization of special elements used in an SQL command (the 'SQL injection' vulnerability) [CWE-89] in FortiClientEMS could allow an unauthorized attacker to execute unauthorized code or command using specially crafted queries," the advisory reads.

The affected versions and released updates to fix this issue are listed below.

  • Version: FortiClientEMS 7.27.2.0 - 7.2.2
  • Solution: Upgrade to version 7.2.3 or higher
  • Version: FortiClientEMS 7.07.0.1 - 7.0.10
  • Solution: Upgrade to version 7.0.11 or higher

The issue was reported to Thiago Santana from the ForticlientEMS development team and the UK NCSC. Fortinet has not detected any exploitation of these vulnerabilities in the wild.

Make me an answer in this format: '{text}'

Tags

Comment