Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks

Fortinet on Monday warned customers that a recently patched vulnerability, tracked as CVE-2023-27997, could be a zero-day flaw that has been exploited in limited attacks. The vulnerability, which is a critical heap-based buffer overflow in the SSL-VPN module, can allow a remote hacker to execute arbitrary code or commands using specifically crafted requests. Data BreachVulnerabilities … Continue reading Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks