CVE-2023-27997

Fortinet FortiOS and FortiProxy SSL-VPN contain a heap-based buffer overflow vulnerability which can allow an unauthenticated, remote attacker to execute code or commands via specifically crafted requests. Vendor/Product: Fortinet FortiOS and FortiProxy SSL-VPN. Added to CISA KEV 2023-06-13; required action: Apply updates per vendor instructions.