Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
isservice
New Contributor

CVE-2023-50164 mitigation

Hi there,

Are there any mitigations available for CVE-2023-50164?

Thanks in advance.

3 REPLIES 3
ozkanaltas
Valued Contributor III

Hello @isservice ,

 

You can use this signature in your IPS profile to mitigate CVE-2023-50164.

 

https://www.fortiguard.com/encyclopedia/ips/54499

 

if you don't see this signature on your FortiGate, you can execute this command on CLI to get new signatures from FortiGuard. 

 

"execute update-now" 

 

image.png

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW
If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
yamgoue
New Contributor

Hi there,

Please which version and appliance model of FGT is impacted by this vulnerability?

 

Thx

Durga_Ashwath

None of our products are affected by CVE-2023-50164. It seems that the issue is directed towards Apache Struts.The default action for this signature is pass. Modify the action as needed.Please do refer the article for the same https://community.fortinet.com/t5/FortiGate/Technical-Tip-IPS-default-action-selection-criteria/ta-p.... please refer to the related - https://www.fortiguard.com/search?q=CVE-2023-50164&engine=1

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors