5 matches found
CVE-2023-46715
An origin validation error CWE-346 vulnerability in Fortinet FortiOS IPSec VPN version 7.4.0 through 7.4.1 and version 7.2.6 and below allows an authenticated IPSec VPN user with dynamic IP addressing to send but not receive packets spoofing the IP of another user via crafted network packets...
CVE-2023-46715
creationtimestamp| type| source ---|---|--- 2025-01-14 14:16:20+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgubkfzg2f 2025-01-14 14:28:19+00:00| seen| https://infosec.exchange/users/cve/statuses/113827178004578867 2025-01-14 14:32:58+00:00| seen|...
CVE-2023-46715
CVE-2023-46715 describes an origin validation error (CWE-346) in Fortinet FortiOS IPSec VPN that allows an authenticated VPN user with dynamic IP addressing to spoof another user’s IP by sending crafted packets. Affected products and versions are Fortinet FortiOS IPSec VPN 7.4.0–7.4.1 and 7.2.6 a...
CVE-2023-46715
An origin validation error CWE-346 vulnerability in Fortinet FortiOS IPSec VPN version 7.4.0 through 7.4.1 and version 7.2.6 and below allows an authenticated IPSec VPN user with dynamic IP addressing to send but not receive packets spoofing the IP of another user via crafted network packets...
Fortinet Fortigate IPsec dynamic assignation IP spoofing (FG-IR-23-407)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-407 advisory. - An origin validation error CWE-346 vulnerability in Fortinet FortiOS IPSec VPN version 7.4.0 through 7.4.1 and version 7.2....