Security information about FortiOS SSL-VPN

Posted at Tuesday, December 13, 2022

FortiOS SSL-VPN is vulnerable to an arbitrary command execution. An attack exploiting this vulnerability has already been confirmed. A fixed version of this vulnerability has been released. If you are using SSL-VPN, please update to the fixed version as soon as possible.

FortiOS Heap-based Buffer Overflow Vulnerability (CVE-2022-42475) Alert (JPCERT/CC) (https://www.jpcert.or.jp/at/2022/at220032.html)