Fortinet FortiOS is a network security platform used by organizations to manage and secure their networks. This vulnerability allows attackers to execute arbitrary code or commands via specially crafted packets, potentially leading to unauthorized access to sensitive data.
You're affected if you use A stack-based buffer overflow vulnerability. Affected versions: 7.4.8, 7.6.3 If you don't recognise this software, you're probably not affected.
Upgrade to FortiOS 7.6.4 or above.
* Follow the recommended upgrade path using Fortinet's tool at: https://docs.fortinet.com/upgrade-tool
- Immediate mitigations:
* Disable security fabric access into interface.
* Only allow legit devices in Wifi Controller > Managed FortiAPs
* Note that auto-auth-extension-device is disabled by default