ACSC Warns: Critical Fortinet Fortigate SSL-VPN Flaw Exploitable
The Australian Cyber Security Centre (ACSC) has sounded a critical alarm for a severe vulnerability (CVE-2023-27997) in Fortinet Fortigate devices that have the SSL-VPN feature enabled. This Remote Code Execution (RCE) flaw could grant unauthorised access and control over affected systems.
Fortunately, the ACSC is yet to detect any successful exploitation attempts within Australian organisations. However, all affected parties are urged to promptly apply the available patches and scrutinise their systems for any signs of compromise.
The security fixes are incorporated in FortiOS firmware versions released on June 9, 2023, including 6.0.17, 6.2.15, 6.4.13, 7.0.12, and 7.2.5. It's crucial for organisations to update their systems to these versions without delay.
While there's no public information on which Australian organisations use Fortinet Fortigate devices and are thus vulnerable, all potentially affected parties should take immediate action. Applying the patches and conducting thorough investigations will help mitigate the risk and ensure the security of their systems.
Read also:
- Unveiling the Less-Discussed Disadvantages of Buds - Revealing the Silent Story
- "In a daring decision, Battlefield 6 forgoes ray tracing - understanding the advantages this choice brings"
- Hackers allegedly responsible for mobile banking fraud in Kenya, as per the central bank, yet confidential sources hint at potential insider involvement
- Upcoming Amazon Hardware Event 2025: Anticipated Announcements
