Latest Fortigate Firmware - Verified _best_

Here are some useful resources and information regarding the latest FortiGate firmware versions that have been verified:

1. Log into your FortiGate and run get system status.
2. Visit the Fortinet Support Forum and search for your current version.
3. If you are more than two minor releases behind the verified version (e.g., running 7.4.1 when 7.4.6 is verified), plan a maintenance window.
4. Always, always verify the checksum.

5) Validate hashes and signatures

• After downloading the firmware, verify integrity:

  Conclusion

  1. CVE-2023-27997: A heap-based buffer overflow vulnerability in the SSL-VPN component. This was a critical "Watchtowr" discovery affecting versions prior to 7.2.5/7.0.12.
  2. CVE-2022-42475: A previous critical RCE vulnerability in the SSL-VPN module.
  3. FG-IR-23-001: Various medium-severity fixes regarding memory corruptions in the intrusion prevention system (IPS) engine.