Fortinet FortiOS and FortiProxy IP Address Validation Bypass Vulnerability

A vulnerability allowing IP blocklist bypass through crafted requests has been identified in Fortinet FortiOS and FortiProxy. This issue arises from incorrect parsing of numbers in different radices, affecting FortiOS versions 7.4.3 and below, 7.2.8 and below, 7.0.15 and below, as well as FortiProxy versions 7.4.3 and below, 7.2.12 through 7.2.16, and 7.2.0 through 7.2.10. The vulnerability allows an unauthenticated attacker to exploit the IP address validation feature, potentially leading to unauthorized access or actions.

Impact

Exploitation of this vulnerability can result in improper access control, allowing attackers to bypass IP blocklists and potentially manipulate or access resources that should be restricted.

Remediation

Users are advised to upgrade Fortinet FortiOS to version 7.4.4 or above, 7.2.9 or above, or migrate to a fixed release if using FortiOS 7.0. For Fortinet FortiProxy, upgrade to version 7.4.4 or above, 7.2.11 or above, or migrate to a fixed release if using FortiProxy 7.0.