Rewterz Threat Advisory – Multiple Fortinet FortiOS and FortiProxy Products Vulnerabilities
October 10, 2023Rewterz Threat Alert – Thousands of Android Devices Sold with Backdoored Firmware – Active IOCs
October 10, 2023Rewterz Threat Advisory – Multiple Fortinet FortiOS and FortiProxy Products Vulnerabilities
October 10, 2023Rewterz Threat Alert – Thousands of Android Devices Sold with Backdoored Firmware – Active IOCs
October 10, 2023Severity
Medium
Analysis Summary
CVE-2023-225609 CVSS:4.3
Fortinet FortiManager and FortiAnalyzer are vulnerable to server-side request forgery, caused by a flaw in theFortiGuard Outbreak feature. By sending specially crafted web requests, an attacker could exploit this vulnerability to conduct SSRF attack to access unauthorized files and services on the system.
CVE-2022-22642 CVSS:7.5
Fortinet FortiAnalyzer and FortiManager is vulnerable to a man-in-the-middle attack, caused by an improper certificate validation vulnerability. An attacker could exploit this vulnerability to perform a man-in-the-,iddle attack on the communication channel between the device and the remote FortiGuard server hosting outbreakalert resources.
CVE-2022-27490 CVSS:5.4
Fortinet FortiManager, Fortinet FortiAnalyzer, Fortinet FortiPortal, and Fortinet FortiSwitch could allow a remote authenticated attacker to obtain sensitive information. By sending diagnose debug commands, an attacker could exploit this vulnerability to obtain sensitive information and use this information to launch further attacks against the affected system.
Impact
- Information Theft
- Gain Access
Indicators Of Compromise
CVE
- CVE-2023-25609
- CVE-2023-22642
- CVE-2022-27490
Affected Vendors
Fortinet
Affected Products
- Fortinet FortiManager 6.0.0
- Fortinet FortiManager 6.0.1
- Fortinet FortiManager 7.0.0
- Fortinet FortiManager 7.2.0
- Fortinet FortiManager 7.2.1
- Fortinet FortiManager 6.4.8
- Fortinet FortiManager 6.4.10
- Fortinet FortiManager 6.4.11
- Fortinet FortiManager 7.0.5
- Fortinet FortiManager 7.0.6
- Fortinet FortiAnalyzer 6.0.0
- Fortinet FortiAnalyzer 7.0.0
- Fortinet FortiAnalyzer 7.2.0
- Fortinet FortiAnalyzer 7.2.1
- Fortinet FortiAnalyzer 7.0.5
- Fortinet FortiAnalyzer 7.0.6
- Fortinet FortiAnalyzer 6.4.8
- Fortinet FortiAnalyzer 6.4.10
- Fortinet FortiAnalyzer 6.4.11
- Fortinet FortiPortal 4.1.2
- Fortinet FortiPortal 4.2.4
- Fortinet FortiPortal 5.0.3
- Fortinet FortiPortal 5.1.2
- Fortinet FortiPortal 5.2.6
- Fortinet FortiPortal 5.3.6
- Fortinet FortiPortal 6.0.0
- Fortinet FortiPortal 6.0.4
- Fortinet FortiPortal 6.0.5
- Fortinet FortiSwitch 6.2.2
- Fortinet FortiSwitch 6.2.6
- Fortinet FortiSwitch 6.4.10
- Fortinet FortiSwitch 6.4.6
- Fortinet FortiSwitch 6.4.9
- Fortinet FortiSwitch 7.0.2
- Fortinet FortiSwitch 7.0.3
Remediation
Refer to FortiGuard Advisory for patch, upgrade or suggested workaround information.