CVE-2023-27997 PoC — Fortinet FortiOS 缓冲区错误漏洞

Source

https://github.com/imbas007/CVE-2023-27997-Check

Associated Vulnerability

Title:Fortinet FortiOS 缓冲区错误漏洞 (CVE-2023-27997)
Description:A heap-based buffer overflow vulnerability [CWE-122] in FortiOS version 7.2.4 and below, version 7.0.11 and below, version 6.4.12 and below, version 6.0.16 and below and FortiProxy version 7.2.3 and below, version 7.0.9 and below, version 2.0.12 and below, version 1.2 all versions, version 1.1 all versions SSL-VPN may allow a remote attacker to execute arbitrary code or commands via specifically crafted requests.

Readme

# CVE-2023-27997-Check

Fofa Query : app="FORTINET-SSLVPN"
### Install

```
$ git https://github.com/imbas007/CVE-2023-27997-Check.git
$ cd CVE-2023-27997-check
$ pip3 install -r requirements.txt
```

# Usage
```shell
usage: CVE-2023-27997.py [-h] [-u URL | -f FILE_LIST]

options:
  -h, --help            show this help message and exit 
  -u URL, --url URL     Single target IP and port (e.g., 192.168.0.1:443)
  -f FILE_LIST, --file-list FILE_LIST
                        File containing IP and port pairs in 'ip:port' format                      
```

```
$ python3 CVE-2023-27997.py -u 192.168.0.1:10443
Checking https://192.168.0.1:10443
Vulnerable

$ python3 CVE-2023-27997.py -f file.txt
Checking https://192.168.0.1:10443
Vulnerable

```

# Reference
https://github.com/BishopFox/CVE-2023-27997-check

File Snapshot


 [4.0K]  /data/pocs/c205a36c9b5f52a8f4163188576d8f1202d9cca5
├── [3.7K]  CVE-2023-27997.py
├── [ 810]  README.md
└── [  29]  requirements.txt

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!