Fortinet Patches Pre-authentication RCE Vulnerability

June 12, 2023

Fortinet Patches Pre-authentication RCE Vulnerability

Fortinet patched a critical remote code exaction (RCE) vulnerability in its FortiGate firewalls, which does not require the threat actor to logged in to exploit it.

The Vulnerability

  • CVE-2023-27997 (Critical) – A pre-authentication RCE Vulnerability affects the SSL-VPN component of Fertigate firewalls. This could allow a threat actor to interfere via the VPN, even if the MFA is activated.

Affected Products

  • All previous versions of FortiGate firewalls.


CYREBRO recommends all Forti customers to update to the current patched versions of FortiOS firmware powering the FortiGate firewalls:

  • 7.0.12
  • 7.2.5
  • 6.4.13
  • 6.2.15
  • 6.0.17

Since Fortinet has not yet released an official advisory, we advise all clients to be aware of potential additional updates from Fortinet’s side.

References: The Hacker News

Sign Up for Updates