VanRoey Logo
Search
VanRoey Logo
menu
Header image overlay

Remote Code Execution vulnerability in Fortinet SSL VPN service

Our support will regularly inform you of important events here.

CVE-2022-42475: Fortinet published an advisory on an actively exploited remote code execution vulnerability affecting FortiOS via the SSL VPN service.

Remote Code Execution vulnerability in Fortinet SSL VPN service

Fortinet is aware of at least one case where this vulnerability has been successfully exploited, although other unknown cases may certainly exist.

One exploits a vulnerability to deploy malicious files on the file system of affected devices.

Moreover, as seen in a recent campaign affecting Fortinet appliances (CVE-2022-40684), attackers can execute remote code in Fortinet appliances to achieve any of the following objectives:

  • Opening and downloading the device configuration file
  • This includes and is not exclusive to cleartext rules, policies, filtering, usernames, routing configurations and encrypted passwords (encrypted via the private encryption key).
  • Creating privileged administrator accounts
  • Uploading and running scripts

Potential for widespread exploitation

According to CISA's Known Exploited Vulnerabilities Catalog, threat actors have historically used similar Fortinet vulnerabilities to gain initial access and move laterally within an organisation's environment.

We therefore also assume that hackers will continue to actively exploit this vulnerability in the short term to gain access to sensitive information, such as the device configuration file.

This is thanks to the ease of exploitation, the potential for payload and execution and the prevalence of affected Fortinet devices within enterprise environments.

 

 

Take action

This is a major vulnerability that should be addressed immediately.

Given the impact of the update process or possible complexity of other measures, we are currently in the process of contacting customers to agree or who/when to perform the upgrade(s).

Please note, if possible, perform the upgrades in a test environment first

Update FortiOS

Product  Impacted Versions  Fixed Versions 
FortiOS  v7.2.0 to v7.2.2
v7.0.0 to v7.0.8
v6.4.0 to v6.4.10
v6.2.0 to v6.2.11 		 v7.2.3 or above
v7.0.9 or above
v6.4.11 or above
v6.2.12 or above 
FortiOS-6K7K   v7.0.0 to v7.0.7
v6.4.0 to v6.4.9
v6.2.0 to v6.2.11
v6.0.0 to v6.0.14 		 v7.0.8 or above
v6.4.10 or above
v6.2.12 or above
v6.0.15 or above 

Workaround

Disable the SSL-VPN

Need help?

Contact us as soon as possible to fix this leak for you. You can do this by mail at support@vanroey.be or count: 014 470 600. You can also have a create a ticket.

Can't create tickets? Ask here to get an account. If our Engineer needs to remotely control your PC, he or she will ask you to run this software .

Download 'remote assistance'

Let our experts guide you

Like thousands of organisations, rely on our knowledge & experience to work out your ideal network, data centre, IT security, CRM / ERP, meeting rooms or digital workplace...

Ask your question
Frame21 Logo
"As CEO of a coworking space, you obviously don't want visitors or permanent residents to be unable to start their meetings on time because of infrastructure problems."
Stéphanie Beyens - CEO Frame 21
Stéphanie Beyens CEO at Frame21
Read Case!
"The need for a good ERP system was growing, especially as we were running up against the limits of Excel. The VanRoey cloud-based ERP system, based on Microsoft Business Central and Dynamics 365 CRM, proved to be the perfect match."
Dirk Evenepoel Co-manager BATO
Read Case!
NMBS Logo
"We will get calls from all over Belgium to support people. Then it is ideal to have central management platforms. This allows us to configure or solve almost everything remotely."
Filip d'Haenens
Filip D'Haenens Sr. Architect at YPTO (IT company SNCB)
Read Case!
Indupol logo | VanRoey.be
"We now have one totally integrated package that (new) employees can quickly find their way around. Everything runs centrally from sales order to production, purchasing, accounting and all figures end up in clear reporting."
Bram Van Baelen, Indupol | VanRoey.be
Bram Van Baelen Indupol
Read Case!
Transparency
Alides Logo | VanRoey.be
"The great added value of VanRoey's integrated solution lies in the faster and more mobile availability of information. Moreover, they can be confident that the data they see is correct and up to date."
Thomas de Moor
Thomas De Moor Financial Controller, Alides
Read Case!
Transparency
"The result is a much better running IT infrastructure that is monitored and supported 24/7 by the people of VanRoey. Today we have far fewer problems and employees in other time zones are also assured of solid IT services!"
Guido Peeters IT Manager Biobest
Read Case!
Transparency

Newsletter  | Linkedin

LinkedIn Spotify Instagram Facebook-f Youtube Newspaper

PartnershipsSatisfaction surveyConditionsPrivacy & cookiesCSR/ESG Policy

  BC-Certified-logo_ISO-27001

Our Solutions

Managed IT Services
Security audit
Expertise Services

IT Security Strategy
Train Your Staff (Awareness)
Network Security
Firewalls
Antivirus
Endpoint Defence & Response (EDR)
Cybersecurity for Government (Smals)
Smart AI camera surveillance

VanRoey Private Cloud (IaaS)
Servers & Storage
Apps & device management
Backup Solutions
Networking & Wifi
Internet line & IP VPN
Azure Cloud Solutions
AI-powered CCTV

Copilot AI
Microsoft 365 / Office 365
Microsoft Teams
Microsoft SharePoint
CTOUCH Touchscreens
HP Business Notebooks
Dell XPS & Latitudes
Professional Printers

ERP & CRM With Dynamics 365
Power Platform
Dynamics 365 Real Estate

Events

Training

Inspiration Centre

Jobs

About

ESG

Kempus

Customer Area

Contact
Inspiration Days

Next session: 14 Nov

IT Inspiration Days

Our own Inspiration Centre in Geel provides the perfect setting to welcome you this autumn and take you into the latest trends within the IT world.

Info & Sessions!

Attention: limited number of places!