mickmick.net

Fortinet FortiOS Remote Code Execution Vulnerability

Release Date: 9 Aug 2023

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

A vulnerability was identified in Fortinet FortiOS. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.

 

---

Impact

• Remote Code Execution

---

System / Technologies affected

• FortiOS version 7.0.0 through 7.0.3
• FortiOS 6.4 all versions
• FortiOS 6.2 all versions

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://www.fortiguard.com/psirt/FG-IR-23-149

---

Vulnerability Identifier

• CVE-2023-29182

---

Source

• Fortinet
• US-CERT

---

Related Link

• https://www.fortiguard.com/psirt/FG-IR-23-149
• https://www.cisa.gov/news-events/alerts/2023/08/08/fortinet-releases-security-update-fortios