Critical Switchgear Vulnerability Allows Remote Attackers to Modify Administrator Credentials

Fortinet FortiSwitch Flaw Allows for Remote Code Execution

A critical vulnerability has been discovered in Fortinet's FortiSwitch product, allowing attackers to execute arbitrary code remotely. The flaw, tracked as CVE-2022-27103, has been assigned a CVSS score of 9.8 out of 10, indicating a high severity risk.

According to security researchers, the vulnerability resides in the FortiSwitch's CLI (Command-Line Interface) and allows an unauthenticated attacker to inject arbitrary code on the device. This could potentially lead to a complete takeover of the device, granting the attacker full control over the network.

The vulnerability affects FortiSwitch devices running firmware versions prior to 7.0.0, and Fortinet has since released an update to patch the issue. The company has also recommended that users update their devices to the latest version to prevent exploitation.

Fortinet's FortiSwitch products are widely used in enterprise networks, making this vulnerability a significant concern for organizations that rely on the devices for network management and security.

The discovery of this vulnerability highlights the importance of keeping software up to date and patching known vulnerabilities to prevent exploitation. Organizations that have not yet updated their FortiSwitch devices are strongly advised to do so as soon as possible to minimize the risk of attack.