Hundreds of thousands of FortiGate firewalls are vulnerable to a critical security issue identified as CVE-2023-27997, almost a month after Fortinet released an update that addresses the problem.
I had to twist our IT guy's arm to update after reading about this yesterday. Apparently he was waiting for a "convenient" time to do it for nearly 3 weeks. It took less than 3 minutes to update....
As one who has to manage an HA pair of PaloAltos AND Fortigates, the FortiUpgrade is just so stupid easy & quick. I don't understand why people would wait longer than a week or two for the 'bleeding edge' people to test first.
Then again, my configuration is so basic there's not much to go wrong.
I was happy to see the FortiCloud interface was updated recently, and pushing this update was about as easy as can be. I updated over 25 devices in a span of about 2 hours the other night and it all went without a hitch.