CVE-2023-29184: 
FortiOS vulnerability analysis and mitigation

An incomplete cleanup vulnerability (CVE-2023-29184) was discovered in FortiOS and FortiProxy systems, identified as CWE-459. The vulnerability affects FortiOS versions 7.2 and earlier, and FortiProxy versions ranging from 7.2.0 through 7.2.2 and before 7.0.8. This security issue was initially published on June 10, 2025, and was reported by Bobby Metz from Lumen Technologies under responsible disclosure (Fortinet PSIRT, NVD).

The vulnerability is classified as an incomplete cleanup issue that affects the Command Line Interface (CLI) component of the affected systems. It has been assigned a CVSS v3.1 base score of 3.2 (Low) with the vector string CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:N. The technical nature of the vulnerability involves improper cleanup processes that could allow a VDOM privileged attacker to add SSH key files on the system silently through crafted CLI requests (Wiz, NVD).

The vulnerability's impact is considered low severity, primarily affecting system integrity. When successfully exploited, it allows an attacker with VDOM privileges to silently add SSH key files to the system, potentially leading to unauthorized persistence mechanisms (Fortinet PSIRT).

Fortinet has released patches to address this vulnerability. For FortiOS users, the recommendation is to migrate to a fixed release if running version 7.2 or earlier. FortiProxy users running versions 7.2.0 through 7.2.2 should upgrade to version 7.2.3 or above, while those on versions 7.0.0 through 7.0.8 should upgrade to version 7.0.9 or above. Users can follow the recommended upgrade path using Fortinet's upgrade tool (Fortinet PSIRT).