Request a Demo
Rewterz
Rewterz Threat Advisory – Multiple Fortinet FortiOS and FortiProxy Products Vulnerabilities
October 10, 2023
Rewterz
Rewterz Threat Alert – Thousands of Android Devices Sold with Backdoored Firmware – Active IOCs
October 10, 2023

Rewterz Threat Advisory – Multiple Fortinet FortiManager and FortiAnalyzer Products Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2023-225609 CVSS:4.3

Fortinet FortiManager and FortiAnalyzer are vulnerable to server-side request forgery, caused by a flaw in theFortiGuard Outbreak feature. By sending specially crafted web requests, an attacker could exploit this vulnerability to conduct SSRF attack to access unauthorized files and services on the system.

CVE-2022-22642 CVSS:7.5

Fortinet FortiAnalyzer and FortiManager is vulnerable to a man-in-the-middle attack, caused by an improper certificate validation vulnerability. An attacker could exploit this vulnerability to perform a man-in-the-,iddle attack on the communication channel between the device and the remote FortiGuard server hosting outbreakalert resources.

CVE-2022-27490 CVSS:5.4

Fortinet FortiManager, Fortinet FortiAnalyzer, Fortinet FortiPortal, and Fortinet FortiSwitch could allow a remote authenticated attacker to obtain sensitive information. By sending diagnose debug commands, an attacker could exploit this vulnerability to obtain sensitive information and use this information to launch further attacks against the affected system.

Impact

  • Information Theft
  • Gain Access 

Indicators Of Compromise

CVE

  • CVE-2023-25609
  • CVE-2023-22642
  • CVE-2022-27490

Affected Vendors

Fortinet

Affected Products

  • Fortinet FortiManager 6.0.0
  • Fortinet FortiManager 6.0.1
  • Fortinet FortiManager 7.0.0
  • Fortinet FortiManager 7.2.0
  • Fortinet FortiManager 7.2.1
  • Fortinet FortiManager 6.4.8
  • Fortinet FortiManager 6.4.10
  • Fortinet FortiManager 6.4.11
  • Fortinet FortiManager 7.0.5
  • Fortinet FortiManager 7.0.6
  • Fortinet FortiAnalyzer 6.0.0
  • Fortinet FortiAnalyzer 7.0.0
  • Fortinet FortiAnalyzer 7.2.0
  • Fortinet FortiAnalyzer 7.2.1
  • Fortinet FortiAnalyzer 7.0.5
  • Fortinet FortiAnalyzer 7.0.6
  • Fortinet FortiAnalyzer 6.4.8
  • Fortinet FortiAnalyzer 6.4.10
  • Fortinet FortiAnalyzer 6.4.11
  • Fortinet FortiPortal 4.1.2
  • Fortinet FortiPortal 4.2.4
  • Fortinet FortiPortal 5.0.3
  • Fortinet FortiPortal 5.1.2
  • Fortinet FortiPortal 5.2.6
  • Fortinet FortiPortal 5.3.6
  • Fortinet FortiPortal 6.0.0
  • Fortinet FortiPortal 6.0.4
  • Fortinet FortiPortal 6.0.5
  • Fortinet FortiSwitch 6.2.2
  • Fortinet FortiSwitch 6.2.6
  • Fortinet FortiSwitch 6.4.10
  • Fortinet FortiSwitch 6.4.6
  • Fortinet FortiSwitch 6.4.9
  • Fortinet FortiSwitch 7.0.2
  • Fortinet FortiSwitch 7.0.3

Remediation

Refer to FortiGuard Advisory for patch, upgrade or suggested workaround information.

FortiGuard Advisory