Fortinet – FortiOS & FortiProxy – SSLVPN vulnerability – CVE-2023-27997

The disclosed vulnerability has a critical CVSS score of 9.2 which affects FortiOS and FortiProxy components of Fortinet devices that are configured to use SSL. Fortinet recommends that the affected devices are updated and Daisy are following the vendors guidance.

Fortinet has published a PSIRT Advisory here with further details, including affected versions:

https://www.fortiguard.com/psirt/FG-IR-23-097

If you have any concerns regarding this matter, please contact Daisy via our Service Desk team on 0330 024 3333 or our Customer Portal.