CVE-2023-40718

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 10, 2023

Updated: Nov 7, 2023

CWE ID 436

Summary

CVE-2023-40718 is a vulnerability affecting Fortinet IPS Engine versions 7.321, 7.166, and 6.158. An interpretation conflict in the software allows attackers to bypass Intrusion Prevention System (IPS) features by crafting targeted TCP packets. This weakness could potentially expose networks to various threats, including malware and unauthorized access. Fortinet urges users to upgrade to a secure version to mitigate this risk. Attackers can exploit this vulnerability to evade IPS protections, potentially leading to security breaches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Fortinet

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/saenwM
https://www.cve.org/CVERecord?id=CVE-2023-40718
https://nvd.nist.gov/vuln/detail/CVE-2023-40718

Back to Vulnerability Database

CVE-2023-40718

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations