CVS 2023-27997

Fortinet FortiOS SSL VPN Remote Code Execution Vulnerability (CVS 2023-27997)

June 14, 2023

Overview Recently, NSFOCUS CERT found that Fortinet has officially fixed a remote code execution vulnerability in FortiOS SSL VPN (CVS-2023-27997). Due to the heap-based Buffer overflow error in SSL VPN, an unauthenticated attacker can trigger the vulnerability by sending a specially crafted packet, which can ultimately enable the execution of arbitrary code on the target […]

Search

Subscribe to the NSFOCUS Blog