CVE-2026-23708
Last modified
CVE-2026-23708 is a high-severity vulnerability rated 8.1/10 on the CVSS scale. A improper authentication vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR on-premise 7.6.0 through 7.6.3, FortiSOAR on-premise 7.5.0 through 7.5.2 may allow an unauthenticated attacker to bypass authentication via replaying captured 2FA request. The attack requires being able to intercept and decrypt authentication traffic and precise timing to replay the request before token expiration, which raises the attack complexity.. EPSS estimates a 0.28% chance of exploitation in the next 30 days.
Description
A improper authentication vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR on-premise 7.6.0 through 7.6.3, FortiSOAR on-premise 7.5.0 through 7.5.2 may allow an unauthenticated attacker to bypass authentication via replaying captured 2FA request. The attack requires being able to intercept and decrypt authentication traffic and precise timing to replay the request before token expiration, which raises the attack complexity.
Metrics
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Fortinet | Fortisoar | >= 7.5.0, < 7.5.3 |
| Fortinet | Fortisoar | >= 7.6.0, < 7.6.4 |
References
- https://fortiguard.fortinet.com/psirt/FG-IR-26-101Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2026-23708?
How severe is CVE-2026-23708?
How do I fix CVE-2026-23708?
Are you affected by CVE-2026-23708?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST