Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
EHoegee
New Contributor II

CVE-2023-27997

Is there any official report on this that comes from Fortinet?

I see a lot of people patching but so far no report from Fortinet.

 

Thank you in advance,

 

Evert

1 Solution
Late2IT
New Contributor

14 REPLIES 14
Jirka1
Contributor III

Guys,

can GEO block be used with SSL VPN as a temporary workaround?
I tried and when setting a different country than the one I'm trying to connect from the portal didn't even load.

 

Thanks.

 

Jirka

Late2IT
New Contributor

Doing anything other than the recommended solution is not advisable. If that action is taken as a mitigating measure, make sure you CYA.

Toshi_Esumi
SuperUser
SuperUser

Does FTNT have any official response to this claim yet? Maybe prohibited to say anything until the new patch version is ready though.
https://thehackernews.com/2023/06/critical-rce-flaw-discovered-in.html

 

Toshi

 

Toshi_Esumi

I posted the old link above. Which was addressed by the recent release. I was concerning about a different post below, but I misread the content and it was not talking about an additional vulnerability, but many of them in the world are still not upgraded to the patched version.

So it was a faulse alarm. Sorry about that.

https://thehackernews.com/2023/07/alert-330000-fortigate-firewalls-still.html

 

Toshi

parteeksharma

Hi EHoegee,
Please check below link for more information related to CVE-2023-27997

https://www.fortiguard.com/psirt/FG-IR-23-097

Regards,
Parteek

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors