Security Alert! Critical RCE Flaw in Fortigate SSL-VPN Devices Puts Corporate Networks at Risk

Fortinet has recently discovered a critical security vulnerability in Fortigate SSL-VPN devices, a widely utilized application that enables VPN access to corporate networks. This vulnerability poses a significant threat, as it allows for remote code execution without requiring any authentication.

Vulnerability Details:

The identified vulnerability, designated as CVE-2023-27997, affects all versions of FortiOS. Exploiting this flaw enables an attacker to execute unauthorized code or commands remotely on the targeted system.

Mitigation Steps:

To safeguard your organization from potential exploits, it is imperative to promptly upgrade your FortiOS firmware to the fixed versions listed below:

  • 6.0.17
  • 6.2.15
  • 6.4.13
  • 7.0.12
  • 7.2.5

Don’t Delay—Reach Out for Expert Assistance

We understand that implementing critical security upgrades can be challenging. That’s why our team of industry-leading networking experts is ready to provide the guidance and support you need. Contact us today at to ensure a smooth and effective upgrade process.

Daniel Ruiz
Practice Lead,
Network Infrastructure