https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/547363#M1430 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/192693">@PavelK</a>&nbsp;</P> <P>Glad to hear that. Many thanks for the update.</P> <P>&nbsp;</P> <P>Best Regards,</P> <P>Suhairul</P> Tue, 27 Jun 2023 05:32:50 GMT Suhairul_Salleh 2023-06-27T05:32:50Z https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/546622#M1415 <P>Hi all,</P> <P>&nbsp;</P> <P>Can I check with you the following Fortinet Pre-authentication Heap-based Buffer Overflow Vulnerability (CVE-2023-27997) is covered in Palo Alto NIPS Signature ?</P> <P>If yes, May I know which released signature version and threat id is covered for this vulnerability?</P> <P>&nbsp;</P> <P><STRONG><U>Vulnerability Details:</U></STRONG></P> <TABLE> <TBODY> <TR> <TD width="113"> <P>Title</P> </TD> <TD width="483"> <P><STRONG>Fortinet Pre-authentication Heap-based Buffer Overflow </STRONG>Vulnerability</P> </TD> </TR> <TR> <TD width="113"> <P>CVE ID</P> </TD> <TD width="483"> <P><STRONG>CVE-2023-27997</STRONG></P> </TD> </TR> <TR> <TD width="113"> <P>CVE Summary</P> </TD> <TD width="483"> <P>Fortinet published an advisory on a pre-authentication heap-based buffer overflow vulnerability (CVE-2023-27997) in FortiOS and FortiProxy SSL-VPN. Successful exploitation of the vulnerability may allow a remote attacker to execute arbitrary code or commands via specially crafted requests.</P> <P>&nbsp;</P> <P>The vulnerability has a <STRONG>CVSS base score of 9.8</STRONG>.</P> </TD> </TR> <TR> <TD width="113"> <P>Link(s)</P> </TD> <TD width="483"> <P><EM><A href="https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.fortiguard.com%2Fpsirt%2FFG-IR-23-097&amp;data=05%7C01%7Cpansupportnoc.apac%40westcon.com%7Cd17e1abd8f084c62e29708db71583107%7Cec8933c6cfb24dd9bfc9621cde1dea8f%7C0%7C0%7C638228395827571116%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&amp;sdata=m2S9w2K0IBI8ba2hTMn2PK2GZUVhpcre0akSxcUeOq4%3D&amp;reserved=0" target="_blank">https://www.fortiguard.com/psirt/FG-IR-23-097</A></EM></P> </TD> </TR> </TBODY> </TABLE> Wed, 21 Jun 2023 01:59:55 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/546622#M1415 Suhairul_Salleh 2023-06-21T01:59:55Z https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/547158#M1422 <P>Hi <a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/294035">@Suhairul_Salleh</a> ,</P> <P>&nbsp;</P> <P>Unfortunately it seems PAN haven't published official IPS signature to cover this vulnerability, yet.</P> Sun, 25 Jun 2023 08:06:33 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/547158#M1422 aleksandar.astardzhiev 2023-06-25T08:06:33Z https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/547186#M1424 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/70130">@aleksandar.astardzhiev</a>&nbsp;,</P> <P>&nbsp;</P> <P>Thanks for the reply.</P> <P>May I know is it going to be released soon? and when it will be released?</P> Mon, 26 Jun 2023 03:07:08 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/547186#M1424 Suhairul_Salleh 2023-06-26T03:07:08Z https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/547361#M1429 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/294035">@Suhairul_Salleh</a></P> <P>&nbsp;</P> <P>the signature for&nbsp;CVE-2023-27997 has been released today in the content update: 8725.</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="PavelK_0-1687840743187.png" style="width: 999px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/51210i35324B25B82864E5/image-size/large?v=v2&amp;px=999" role="button" title="PavelK_0-1687840743187.png" alt="PavelK_0-1687840743187.png" /></span></P> <P>&nbsp;</P> <P>Kind Regards</P> <P>Pavel</P> <P>&nbsp;</P> <P>&nbsp;</P> Tue, 27 Jun 2023 04:39:38 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/547361#M1429 PavelK 2023-06-27T04:39:38Z https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/547363#M1430 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/192693">@PavelK</a>&nbsp;</P> <P>Glad to hear that. Many thanks for the update.</P> <P>&nbsp;</P> <P>Best Regards,</P> <P>Suhairul</P> Tue, 27 Jun 2023 05:32:50 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/fortinet-pre-authentication-heap-based-buffer-overflow/m-p/547363#M1430 Suhairul_Salleh 2023-06-27T05:32:50Z