Fortinet Stack-based Buffer Overflow Vulnerability (CVE-2023-29182)

A stack-based buffer overflow vulnerability (CVE-2023-29182) was identified in FortiOS recently which may allow a privileged attacker to execute arbitrary code via specially crafted CLI commands, provided the attacker were able to evade FortiOS stack protections.

Fortinet has released the patches to remediate the vulnerability and strongly recommends customers to apply the update IMMEDIATELY.

 

Vulnerability

  • Stack-based Buffer Overflow Vulnerability (CVE-2023-29182)

 

Severity Level

  • Medium

 

Affected Systems

  • FortiOS version 7.0.0 through 7.0.3
  • FortiOS 6.4 all versions
  • FortiOS 6.2 all versions

 

Remediation

  • Please apply the latest update patches in your department devices immediately.

 

Reference

 

Enquiry

 

 

Published on: 9 Aug 2023