2 matches found
CVE-2026-23708
A improper authentication vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR on-premise 7.6.0 through 7.6.3, FortiSOAR on-premise 7.5.0 through 7.5.2 may allow an unauthenticated attacker to bypass authentication via replaying captured 2FA...
CVE-2026-23708
Fortinet FortiSOAR PaaS (versions 7.6.0–7.6.3 and 7.5.0–7.5.2) and FortiSOAR on‑premise (same version ranges) are affected by an improper authentication vulnerability that could allow an unauthenticated attacker to bypass authentication by replaying a captured 2FA request. The attack requires int...