Fortinet on Monday disclosed a newly patched critical flaw affecting FortiOS and FortiProxy.
The vulnerability, tracked as CVE-2023-27997, concerns a heap-based buffer overflow vulnerability in FortiOS that could allow a remote attacker to execute arbitrary code or commands via specifically crafted requests.
LeXFO security researchers Charles Fol and Dany Bach have been credited with discovering and reporting the flaw.
U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added CVE- 2023- 27997 to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
Related topics Mastering API Security: Understanding Your True Attack Surface Discover the untapped vulnerabilities in your API ecosystem and take proactive steps towards ironclad security.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply