Improper Authentication Vulnerability in Fortinet FortiSOAR Products
CVE-2026-23708

6.7MEDIUM

Key Information:

Vendor: Fortinet
Status: Fortisoar Paas; Fortisoar On-premise
Vendor: CVE Published:; 14 April 2026

What is CVE-2026-23708?

An improper authentication vulnerability exists in Fortinet FortiSOAR versions 7.6.0 to 7.6.3 and 7.5.0 to 7.5.2, which may allow unauthenticated attackers to bypass the authentication process. This exploitation occurs through the replay of captured two-factor authentication requests. The attack demands intercepting and decrypting authentication traffic and precise timing to replay the request before the token expires, significantly complicating the attack process.

Affected Version(s)

FortiSOAR on-premise 7.6.0 <= 7.6.3

FortiSOAR on-premise 7.5.0 <= 7.5.2

FortiSOAR PaaS 7.6.0 <= 7.6.3

References

https://fortiguard.fortinet.com/psirt/FG-IR-26-101

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 14, 2026
Vulnerability Reserved
Jan 15, 2026

CVE-2026-23708 Data

JSON