Usage subject to Terms and Conditions

Read the original article at

Original release date: December 12, 2022

Fortinet has released security updates to address a heap-based buffer overflow vulnerability (CVE-2022-42475) in FortiOS. An attacker could exploit this vulnerability to take control of an affected system. This vulnerability has been exploited in the wild. 

CISA encourages users and administrators to review Fortinet security advisory FG-IR-22-368, apply the necessary updates, and validate systems against the IOCs listed in the advisory. 

This product is provided subject to this Notification and this Privacy & Use policy.

Read the original article at