Published on: 10 October 2022
Fortinet released security advisories to address a vulnerability in FortiOS and FortiProxy software. A remote unauthenticated attacker could exploit the vulnerability by sending a specially crafted HTTP or HTTPS request to an affected system.
Fortinet has released additional information on the remote authentication bypass vulnerability (CVE-2022-40684) affecting a number of Fortinet Products. As multiple reports indicate that the vulnerability is being exploited in the wild. You are advised to take the following actions:
(a) Ensure the remote access to administrative interface of the affected systems are disabled or restricted to only authorised IP addresses. Detailed instructions could be found at the following URL:
https://www.fortiguard.com/psirt/FG-IR-22-377
(b) Apply the security update to address the vulnerability.
Reports indicate that a remote authentication bypass vulnerability (CVE-2022-40684) is at a high risk of exploitation. You are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.
A successful attack could lead to security restriction bypass on an affected system.
Software updates for affected systems are now available. Administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.