TT-CSIRT-422.214.171.124: Critical Fortinet SSL-VPN Vulnerability
Fortinet has released a security update to address a critical zero day vulnerability in their FortiOS SSL-VPN product. The vulnerability in question is being tracked as CVE-2022-42475 and is a heap-based buffer overflow in several versions of ForiOS that received a CVSSv3 score of 9.3. A remote, unauthenticated attacker could exploit this vulnerability with a specially crafted request and gain code execution.
Vulnerabilities of this nature, and on this type of system, have proven to be of high value to attackers and have been successfully used in the past to compromise local organizations. TT-CSIRT strongly advises that organizations upgrade to an unaffected version of FortiOS on an emergency basis and follow FortiGuard’s advice to review existing systems for signs of compromise. Early reports suggest that this vulnerability is being exploited in the wild.
TT-CSIRT encourages administrators to review the following releases and take the necessary actions immediately:
If you have any queries, comments or require assistance, please feel free to contact TT-CSIRT via firstname.lastname@example.org