CVE-2023-39279

Summary

CVE-2023-39279 is a recently disclosed stack-based buffer overflow vulnerability affecting SonicOS, the operating system used by Fortinet FortiGate firewalls. This issue is found in the getPacketReplayData.json URL endpoint, which can be exploited post-authentication. Successful exploitation results in a firewall crash, potentially allowing an attacker to gain unauthorized access or cause denial-of-service conditions. It is essential for organizations using Fortinet FortiGate firewalls to apply the available patch promptly to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.