FortiGate Belsen Leak Checker

About This Checker

This tool helps you check whether an entered IP address or subnet is affected by the FortiGate SSL-VPN leaks.

References and Additional Resources

• FG-IR-22-377 (Official Advisories by Fortinet)
• CVE-2022-40684 (NIST NVD Entry)

Technical Analysis

Affected Versions

• FortiOS: 7.2.0 through 7.2.1, 7.0.0 through 7.0.6
• FortiProxy: 7.2.0, 7.0.0 through 7.0.6
• FortiSwitchManager: 7.2.0, 7.0.0

Timeline

• October 2022: Initial vulnerability discovery and exploitation
• January 2025: Public release of configurations from affected devices

Recommended Mitigation Steps

• Update to patched versions:
• FortiOS 7.2.2 or above, FortiOS 7.0.7 or above
• FortiProxy 7.2.1 or above, FortiProxy 7.0.7 or above
• FortiSwitchManager 7.2.1 or above, FortiSwitchManager 7.0.1 or above

Additional Security Measures

• Review and update admin credentials
• Audit firewall configurations
• Monitor for unauthorized access
• Enable logging and monitoring