{"id":28993,"date":"2023-03-08T16:44:20","date_gmt":"2023-03-08T15:44:20","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=28993"},"modified":"2023-07-19T16:23:21","modified_gmt":"2023-07-19T14:23:21","slug":"fortinet-march-2023-security-advisory","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2023\/03\/08\/fortinet-march-2023-security-advisory\/","title":{"rendered":"Fortinet March 2023 Security Advisory"},"content":{"rendered":"

\"Sicherheit[German<\/a>]Administrators of Fortinet's FortiOS and FortiProxy must become active. The manufacturer has published various security advisories for different products as of March 7, 2023. Among other things, a DoS vulnerability CVE-2022-45861 in FortiOS and FortiProxy are addressed. Some of the vulnerabilities are very critical (CVSSv3 score 9.3).<\/p>\n

<\/p>\n

Fortinet March 2023 Vulnerability Advisories<\/h2>\n

\"\"The issue has been reported to me by an anonymous German blog reader in the discussion area with the following text (thanks for that).<\/p>\n

Vulnerabilities in FortiOS (FortiGate Firewalls) and other products – some of them very critical<\/p><\/blockquote>\n

Fortinet has addressed various security advisories in theMarch 2023 Vulnerability Advisories. Below I have pulled out three vulnerability descriptions with higher risk – the list of all vulnerabilities can be found in the March 2023 Vulnerability Advisory.<\/p>\n

FortiOS \/ FortiProxy – Heap buffer underflow in administrative interface<\/h3>\n

A 'buffer underflow' vulnerability CVE-2023-25610<\/a> exists in the FortiOS & FortiProxy administrative interface, allowing an unauthenticated remote attacker to execute arbitrary code on the device and\/or perform a DoS on the graphical user interface (GUI) via specially crafted requests. The vulnerability is critical, CVSSv3 score 9.3. Affected are:<\/p>\n

FortiOS version 7.2.0 through 7.2.3
\nFortiOS version 7.0.0 through 7.0.9
\nFortiOS version 6.4.0 through 6.4.11
\nFortiOS version 6.2.0 through 6.2.12
\nFortiOS 6.0 all versions
\nFortiProxy version 7.2.0 through 7.2.2
\nFortiProxy version 7.0.0 through 7.0.8
\nFortiProxy version 2.0.0 through 2.0.11
\nFortiProxy 1.2 all versions
\nFortiProxy 1.1 all versions<\/p>\n

Details may be read at FortiOS \/ FortiProxy – Heap buffer underflow in administrative interface<\/a> (dates March 7, 203).<\/p>\n

FortiOS \/ FortiProxy – Path traversal vulnerability allows VDOM escaping<\/h3>\n

A relative path traversal vulnerability [CWE-23] in FortiOS and FortiProxy may allow privileged VDOM administrators to elevate their privileges via manipulated CLI requests to the system's super admin. Affected are:<\/p>\n

FortiOS version 7.2.0 through 7.2.3
\nFortiOS version 7.0.0 through 7.0.8
\nFortiOS version 6.4.0 through 6.4.11
\nFortiOS version 6.2.0 through 6.2.12<\/p>\n

FortiProxy version 7.2.0 through 7.2.1
\nFortiProxy version 7.0.0 through 7.0.7
\nFortiProxy version 2.0.0 through 2.0.11
\nFortiProxy version 1.2.0 through 1.2.13
\nFortiProxy version 1.1.0 through 1.1.6<\/p>\n

Note: Impact on FortiProxy 7.0.x, 2.0.x, 1.2.x, 1.1.x is minor as it does not have VDOMs<\/p>\n

Vulnerability CVE-2022-42476<\/a> has a CVSSv3 score of 7.8 (hight), details may be rad at FG-IR-22-401<\/a>.<\/p>\n

FortiOS & FortiProxy – Access of NULL pointer in SSLVPNd<\/h3>\n

Security advisory FortiOS & FortiProxy – Access of NULL pointer in SSLVPNd<\/em> (FG-IR-22-477) has details about a DoS vulnerability CVE-2022-45861 in FortiOS and FortiProxy. CVSSv3 has a score of 6.4 and it was sayed:<\/p>\n

An uninitialized pointer vulnerability [CWE-824] in the FortiOS & FortiProxy SSL VPN portal may allow a remote authenticated attacker to crash the sslvpn daemon via an HTTP GET request.<\/p><\/blockquote>\n

Affected are:<\/p>\n

FortiOS version 7.2.0 through 7.2.3
\nFortiOS version 7.0.0 through 7.0.9
\nFortiOS version 6.4.0 through 6.4.11
\nFortiOS 6.2 all versions<\/p>\n

FortiProxy version 7.2.0 through 7.2.1
\nFortiProxy version 7.0.0 through 7.0.7
\nFortiProxy version 2.0.0 through 2.0.11
\nFortiProxy 1.2 all versions
\nFortiProxy 1.1 all versions<\/p>\n

Advisary FG-IR-22-477 has more details. Upgrades are available.<\/p>\n","protected":false},"excerpt":{"rendered":"

[German]Administrators of Fortinet's FortiOS and FortiProxy must become active. The manufacturer has published various security advisories for different products as of March 7, 2023. Among other things, a DoS vulnerability CVE-2022-45861 in FortiOS and FortiProxy are addressed. Some of the … Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580,1547],"tags":[69,1544],"class_list":["post-28993","post","type-post","status-publish","format-standard","hentry","category-security","category-software","tag-security","tag-software"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/28993","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=28993"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/28993\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=28993"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=28993"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=28993"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}