[FortiProxy] SSL VPN buffer overflow through JavaScript herf parsing when proxying webpages Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-20-229 Final 1 1 2021-02-03T00:00:00 Current version 2021-02-03T00:00:00 2021-02-03T00:00:00 A heap buffer overflow vulnerability in the FortiProxy SSL VPN web portal may cause the SSL VPN web service termination for logged in users or potential remote code execution on FortiProxy. This happens when an authenticated user visits a specifically crafted proxied webpage and is due to a failure to handle Javascript HREF content properly. Denial of service FortiProxy version 2.0.0FortiProxy versions 1.2.8 and below.FortiProxy versions 1.1 all versionsFortiProxy versions 1.0 all versions Please upgrade to FortiProxy versions 2.0.1 or above. Please upgrade to FortiProxy versions 1.2.9 or above. Fortinet is pleased to thank Meh Chang and Orange Tsai from DEVCORE Security Research Team for reporting this vulnerability under responsible disclosure. CVE-2018-13383 4.2 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:F/RL:X/RC:X https://fortiguard.fortinet.com/psirt/FG-IR-20-229 [FortiProxy] SSL VPN buffer overflow through JavaScript herf parsing when proxying webpages Reference>