The security company Fortinet warns of a stack buffer overflow vulnerability (CWE-124) in FortiOS and FortiProxy.

A stack buffer overflow vulnerability has been found in both FortiOS and FortiProxy. Fortinet reports this after being informed by another security company, Watchtowr. In addition to Fortinet’s PSIRT Advisory, the American Cybersecurity & Infrastructure Security Agency also issued an additional warning.

Danger

The vulnerability is named CVE-2023-33308 and scores a solid 9.8 out of 10 on the CVSSv3 scale, making it quite critical. Attackers can exploit them to remotely execute malicious code. Another danger is that the proxy or the firewall can be attacked via data packets.

Fortinet listed products that may be affected:

• FortiOS version 7.2.0 to 7.2.3
• FortiOS version 7.0.0 to 7.0.10
• FortiProxy versions 7.2.0 to 7.2.2
• FortiProxy version 7.0.0 to 7.0.9

solutions

Solutions are provided in the upgrades of the following systems:

• FortiOS version 7.4.0 or higher
• FortiOS version 7.2.4 or higher
• FortiOS version 7.0.11 or later
• FortiProxy version 7.2.3 or higher
• FortiProxy version 7.0.10 or later

For those who are unable to install an update yet, Fortinet recommends disabling HTTP/2 support for SSL inspection profiles used by proxy policies or firewall policies in proxy mode.

Therefore, updating whenever possible remains extremely important. Earlier this month, we reported on the potential impact of procrastination on admins and IT teams: hundreds of thousands of vulnerable firewalls. Fortinet also recently added firewalls to its flexible licensing program.