CVE-2023-27997
CVE-2023-27997
In short
A heap memory overflow flaw in FortiOS and FortiProxy SSL-VPN allows a remote attacker to execute malicious code by sending specially crafted requests, without needing to log in first.
Technical detail
Heap-based buffer overflow in SSL-VPN component (CWE-122) triggered by specially crafted remote requests enables arbitrary code execution. Attack vector is network-based with no authentication required; vulnerable versions span FortiOS 7.2.4 and below, 7.0.11 and below, 6.4.12 and below, 6.0.16 and below, and multiple FortiProxy versions.
Summary generated and translated by AI from the official description.
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS version 7.2.4 and below, version 7.0.11 and below, version 6.4.12 and below, version 6.0.16 and below and FortiProxy version 7.2.3 and below, version 7.0.9 and below, version 2.0.12 and below, version 1.2 all versions, version 1.1 all versions SSL-VPN may allow a remote attacker to execute arbitrary code or commands via specifically crafted requests.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:X/RC:R
public PoCs found — 10
githubgithub.com/BishopFox/CVE-2023-27997-check★ 134githubgithub.com/lexfo/xortigate-cve-2023-27997★ 63githubgithub.com/rio128128/CVE-2023-27997-POC★ 27githubgithub.com/delsploit/CVE-2023-27997★ 9githubgithub.com/TechinsightsPro/ShodanFortiOS★ 2githubgithub.com/imbas007/CVE-2023-27997-Check★ 1githubgithub.com/onurkerembozkurt/fgt-cve-2023-27997-exploit★ 0githubgithub.com/puckiestyle/cve-2023-27997★ 0githubgithub.com/Cyb3rEnthusiast/CVE-2023-27997★ 0githubgithub.com/node011/CVE-2023-27997-POC★ 0⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →