mickmick.net

Fortinet Products Multiple Vulnerabilities

Release Date: 12 Jul 2023

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

Multiple vulnerabilities were identified in Fortinet Products.  A remote attacker could exploit some of these vulnerabilities to trigger remote code execution on the targeted system.

---

Impact

• Remote Code Execution

---

System / Technologies affected

For CVE-2023-33308

 

• FortiOS version 7.2.0 through 7.2.3
• FortiOS version 7.0.0 through 7.0.10
• FortiProxy version 7.2.0 through 7.2.2
• FortiProxy version 7.0.0 through 7.0.9

 

For CVE-2023-28001

 

• FortiOS version 7.2.0 through 7.2.4

• FortiOS 7.0 all versions

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://www.fortiguard.com/psirt/FG-IR-23-028
• https://www.fortiguard.com/psirt/FG-IR-23-183

---

Vulnerability Identifier

• CVE-2023-28001
• CVE-2023-33308

---

Source

• Fortinet

---

Related Link

• https://www.fortiguard.com/psirt/FG-IR-23-028
• https://www.fortiguard.com/psirt/FG-IR-23-183