Platform
- Platform
- Platform Overview
  All Technology Asset Intelligence in 1 place.
- Asset Discovery
  In-depth discovery across the technology estate.
- Asset Inventory
  All asset data unified in one place.
- Asset Analytics
  Empower your decision-making with trusted data.
TRY NOW
Why Lansweeper?
- Why Lansweeper?
- Why Lansweeper?
  Lansweeper helps you to minimize risks and optimize your IT by providing actionable insight into your entire technology estate.
- By Role
  Complete visibility for everyone.
  For System Administrators For IT Managers For C-suite For Cybersecurity Teams For IT Support For MSPs
- By Use Case
  Fuel any IT scenario.
  Discover & Inventory My IT Assets OT Asset Management Replace Inventory Spreadsheets Enhance Cybersecurity Improve CMDB Data Quality Achieve Service Desk Excellence
- By Industry
  Flexibility for your industry.
  Education Healthcare Manufacturing Public Sector
TRY NOW
Integrations
Partners
- Partners
- Partner Ecosystem
  Leverage the power of our data to accelerate growth.
- MSP
  Exceed customer expectations with data-driven managed services.
- ISV Technology Partners
  Integrate or embed our technology to build smarter solutions.
- Channel Partners
  Whether you service, distribute, consult, or resell – we have partner programs to help you grow.
- Find a partner
  Find a trusted Lansweeper certified partner.
TRY NOW
Pricing
Resources
- Resources
- Resources
  Browse resources tailored to your needs.
- Blog
  Discover the latest product news, pro tips, and more.
- Support Help Center
  Need help? Browse extensive resources.
- Success Stories
- Ebooks & White Papers
  Detailed documents you can download for free.
- Webinars & Events
  Register for live or virtual events.
- Report Library
  Browse our extensive audit report library.
- Community
  Start a conversation with your peers.
- Developer Portal
TRY NOW

TRY NOW

Fortinet Heap-Based Buffer Overflow Vulnerability

Network Devices Vulnerability

Discover Vulnerable Fortinet Devices in Your IT Estate

Fortinet released emergency security patches for a number of versions of FortiOS and FortiOS-6K7K in response to a critical heap-based buffer overflow vulnerability in FortiOS SSL-VPN. The bug could allow a remote unauthenticated attacker to execute arbitrary code or commands. The below report will give you an actionable overview of all Fortinet devices that still need to be patched. You can read more about this vulnerability in the Fortinet RCE Vulnerability blog post.

Fortinet Vulnerability Audit December 2022

The version information of your FortiOS installations will not be scanned by default. You will have to add this information to your scan manually using custom OID scanning. You can easily find the correct OID in the MIB library.

MIB Library Fortinet Vulnerability December 2022

Fortinet Heap-Based Buffer Overflow Vulnerability Query

Select Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tsysAssetTypes.AssetTypeIcon10 As icon,
tblAssets.IPAddress,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tblAssets.Description,
Subquery1.Label As OID,
Subquery1.Data As Version,
Right(Subquery1.DataClean, CharIndex('v', Reverse(Subquery1.DataClean)) -
1) As [Version (Normalized)],
Case
When (tblAssetCustom.Model like '%6000%' or
tblAssetCustom.Model like '%7000%') and
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 3) As int) = 7 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 2) As int) = 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) >= 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) <= 7 Then 'Vulnerable'
When (tblAssetCustom.Model like '%6000%' or
tblAssetCustom.Model like '%7000%') and
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 3) As int) = 6 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 2) As int) = 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) >= 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) <= 14 Then 'Vulnerable'
When (tblAssetCustom.Model like '%6000%' or
tblAssetCustom.Model like '%7000%') and
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 3) As int) = 6 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 2) As int) = 4 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) >= 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) <= 9 Then 'Vulnerable'
When (tblAssetCustom.Model like '%6000%' or
tblAssetCustom.Model like '%7000%') and
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 3) As int) = 6 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 2) As int) = 2 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) >= 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) <= 11 Then 'Vulnerable'
When Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 3) As int) = 7 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 2) As int) = 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) >= 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) <= 8 Then 'Vulnerable'
When Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 3) As int) = 7 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 2) As int) = 2 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) >= 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) <= 2 Then 'Vulnerable'
When Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 3) As int) = 6 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 2) As int) = 4 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) >= 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) <= 10 Then 'Vulnerable'
When Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 3) As int) = 6 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 2) As int) = 2 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) >= 0 And
Cast(ParseName(Right(Subquery1.DataClean, CharIndex('v',
Reverse(Subquery1.DataClean)) - 1), 1) As int) <= 11 Then 'Vulnerable'
Else ''
End As [FortiOS Vulnerable],
Case
When tblErrors.ErrorText Is Not Null Or
tblErrors.ErrorText != '' Then
'Scanning Error: ' + tsysasseterrortypes.ErrorMsg
Else ''
End As ScanningErrors,
tblAssets.Lastseen,
tblAssets.Lasttried
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Left Join (Select tblOIDData.AssetID,
tblOIDData.Label,
tblOIDData.Data,
SubString(tblOIDData.Data, CharIndex('v', tblOIDData.Data), CharIndex(',',
tblOIDData.Data) - 1 - CharIndex('v', tblOIDData.Data) + Len(',')) As
DataClean
From tblOIDData
Where tblOIDData.Label = 'fg sys version' and tblOIDData.Data not like '%data%') As Subquery1 On Subquery1.AssetID =
tblAssets.AssetID
Left Join (Select Distinct Top 1000000 tblErrors.AssetID As ID,
Max(tblErrors.Teller) As ErrorID
From tblErrors
Group By tblErrors.AssetID) As ScanningError On tblAssets.AssetID =
ScanningError.ID
Left Join tblErrors On ScanningError.ErrorID = tblErrors.Teller
Left Join tsysasseterrortypes On tsysasseterrortypes.Errortype =
tblErrors.ErrorType
Where tblAssetCustom.Manufacturer Like '%fortinet%' And tblState.Statename =
'Active'
Order By tblAssetCustom.Model,
tblAssets.IPAddress,
Subquery1.DataClean

Show

Hide

NO CREDIT CARD REQUIRED

Ready to get started? You'll be up and running in no time.

Explore all our features, free for 14 days.

TRY NOW FOR FREE TALK TO SALES

Audit and Take Action in 3 Easy Steps

1. Start Your Free Trial

Experience all Lansweeper features: start your free 14-day trial.
2. Discover All Assets

Discover all IT, OT, and IoT devices from all environments and get a complete asset inventory.
3. Run the Audit & Take Action

Run the audit report and see which devices require your attention.

NO CREDIT CARD REQUIRED

Ready to get started?
You’ll be up and running in no time.

Explore all our features, free for 14 days.

TRY NOW TALK TO SALES