CVE-2023-46715 - CERT CVE

  1. CVE-2023-46715

ID CVE-2023-46715
Sažetak An origin validation error [CWE-346] vulnerability in Fortinet FortiOS IPSec VPN version 7.4.0 through 7.4.1 and version 7.2.6 and below allows an authenticated IPSec VPN user with dynamic IP addressing to send (but not receive) packets spoofing the IP of another user via crafted network packets.
Reference
CVSS
Base: 5.0
Impact: 1.4
Exploitability:3.1
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
NONE LOW NONE
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N
Zadnje važnije ažuriranje 14-01-2025 - 14:15
Objavljeno 14-01-2025 - 14:15