Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Critical Vulnerability in FortiOS & FortiProxy
Alerts

Critical Vulnerability in FortiOS & FortiProxy

12 July 2023

Fortinet has released security updates to address a critical vulnerability (CVE-2023-33308) in FortiOS & FortiProxy. The vulnerability has a Common Vulnerability Scoring System (CVSSv3) score of 9.8 out of 10. 

Successful exploitation of this stack-based overflow vulnerability could allow a remote attacker to execute arbitrary code.

The vulnerability affects the following product versions:

  • FortiOS version 7.2.0 through 7.2.3

  • FortiOS version 7.0.0 through 7.0.10

  • FortiProxy version 7.2.0 through 7.2.2

  • FortiProxy version 7.0.0 through 7.0.9

Users and administrators of affected product versions are advised to update to the latest versions immediately.

More information is available here:
https://www.fortiguard.com/psirt/FG-IR-23-183

Back to top