Lucene search
K

12 matches found

GithubExploit
GithubExploit
•added 2025/04/18 5:49 p.m.•289 views

Exploit for Out-of-bounds Write in Fortinet Fortiproxy

fgt-cve-2023-27997-exploit FortiGate SSL‑VPN CVE‑2023‑279...

9.8CVSS10AI score0.85689EPSS
Exploits10
GithubExploit
GithubExploit
•added 2023/10/12 5:50 p.m.•486 views

Exploit for Out-of-bounds Write in Fortinet Fortiproxy

CVE-2023-27997 FortiGate VM64 7.2.0 is exploitable by this co...

9.8CVSS10AI score0.85689EPSS
Exploits10
GithubExploit
GithubExploit
•added 2023/10/12 4:12 p.m.•389 views

Exploit for Out-of-bounds Write in Fortinet Fortiproxy

xortigate-cve-2023-27997 Exploit for xortigate CVE-2023-2799...

9.8CVSS10AI score0.85689EPSS
Exploits10
The Hacker News
The Hacker News
•added 2023/07/04 6:58 a.m.•8 views

Alert: 330,000 FortiGate Firewalls Still Unpatched to CVE-2023-27997 RCE Flaw

No less than 330,000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical security flaw affecting Fortinet devices that has come under active exploitation in the wild. Cybersecurity firm Bishop Fox, in a report published last week, said that out of nearly 490,000...

9.8CVSS7.8AI score0.85689EPSS
Exploits10
The Hacker News
The Hacker News
•added 2023/07/04 6:58 a.m.•61 views

Alert: 330,000 FortiGate Firewalls Still Unpatched to CVE-2023-27997 RCE Flaw

No less than 330,000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical security flaw affecting Fortinet devices that has come under active exploitation in the wild. Cybersecurity firm Bishop Fox, in a report published last week, said that out of nearly 490,000...

9.8CVSS8AI score0.85689EPSS
Exploits10
The Hacker News
The Hacker News
•added 2023/06/27 5:35 a.m.•68 views

New Fortinet's FortiNAC Vulnerability Exposes Networks to Code Execution Attacks

Fortinet has rolled out updates to address a critical security vulnerability impacting its FortiNAC network access control solution that could lead to the execution of arbitrary code. Tracked as CVE-2023-33299, the flaw is rated 9.6 out of 10 for severity on the CVSS scoring system. It has been...

9.8CVSS8.8AI score0.99815EPSS
Exploits17
CVE
CVE
•added 2023/06/13 8:41 a.m.•1294 views

CVE-2023-27997

CVE-2023-27997 is a heap-based buffer overflow in Fortinet FortiOS SSL‑VPN (and FortiProxy) that allows remote code execution via specially crafted requests. Affected families include FortiOS: 7.2.x <=7.2.4, 7.0.x <=7.0.11, 6.4.x <=6.4.12, 6.0.x <=6.0.16; FortiProxy: 7.2.x <=7.2.3,...

9.8CVSS9.8AI score0.85689EPSS
In wildExploits10References2Affected Software2
Vulnrichment
Vulnrichment
•added 2023/06/13 8:41 a.m.•22 views

CVE-2023-27997

A heap-based buffer overflow vulnerability CWE-122 in FortiOS version 7.2.4 and below, version 7.0.11 and below, version 6.4.12 and below, version 6.0.16 and below and FortiProxy version 7.2.3 and below, version 7.0.9 and below, version 2.0.12 and below, version 1.2 all versions, version 1.1 all...

9.8CVSS8.5AI score0.85689EPSS
Exploits10References1
The Hacker News
The Hacker News
•added 2023/06/13 4:21 a.m.•93 views

Critical FortiOS and FortiProxy Vulnerability Likely Exploited - Patch Now!

Fortinet on Monday disclosed that a newly patched critical flaw impacting FortiOS and FortiProxy may have been "exploited in a limited number of cases" in attacks targeting government, manufacturing, and critical infrastructure sectors. The vulnerability, dubbed XORtigate and tracked as...

9.8CVSS9.9AI score0.99474EPSS
Exploits19
CISA
CISA
•added 2023/06/12 12:0 p.m.•7 views

Fortinet Releases Security Updates for FortiOS and FortiProxy

Fortinet has released security updates to address a heap-based buffer overflow vulnerability CVE-2023-27997 in FortiOS and FortiProxy. An attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review Fortinet security advisory...

9.8CVSS7.8AI score0.85689EPSS
Exploits10References2
The Hacker News
The Hacker News
•added 2023/06/12 6:49 a.m.•57 views

Critical RCE Flaw Discovered in Fortinet FortiGate Firewalls - Patch Now!

Fortinet has released patches to address a critical security flaw in its FortiGate firewalls that could be abused by a threat actor to achieve remote code execution. The vulnerability, tracked as CVE-2023-27997, is "reachable pre-authentication, on every SSL VPN appliance," Lexfo Security...

9.4AI score0.85689EPSS
Exploits10
Tenable Nessus
Tenable Nessus
•added 2023/06/12 12:0 a.m.•157 views

Fortinet Fortigate Heap buffer overflow in sslvpn pre-authentication (FG-IR-23-097)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-097 advisory. - A heap-based buffer overflow vulnerability CWE-122 in FortiOS version 7.2.4 and below, version 7.0.11 and below, version...

9.8CVSS9.4AI score0.85689EPSS
Exploits10References2
Rows per page
Query Builder