CVE-2026-23708: Escalation of privilege in Fortinet FortiSOAR PaaS
A improper authentication vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR on-premise 7.6.0 through 7.6.3, FortiSOAR on-premise 7.5.0 through 7.5.2 may allow an unauthenticated attacker to bypass authentication via replaying captured 2FA request. The attack requires being able to intercept and decrypt authentication traffic and precise timing to replay the request before token expiration, which raises the attack complexity.
AI Analysis
Technical Summary
The vulnerability CVE-2026-23708 in Fortinet FortiSOAR PaaS and on-premise versions 7.5.0 to 7.5.2 and 7.6.0 to 7.6.3 is caused by improper authentication. It enables an unauthenticated attacker to bypass authentication by replaying a captured 2FA request. Exploitation requires the attacker to intercept and decrypt authentication traffic and replay the request within the token's valid timeframe, which increases attack complexity. The vulnerability has a CVSS 3.1 base score of 6.7, indicating medium severity with network attack vector, high impact on confidentiality, integrity, and availability, and partial user interaction required. An official fix has been released by Fortinet.
Potential Impact
If exploited, this vulnerability allows an unauthenticated attacker to bypass authentication mechanisms and escalate privileges within FortiSOAR environments. The attacker can gain unauthorized access, potentially compromising confidentiality, integrity, and availability of the system. However, the attack complexity is high due to the need to intercept and decrypt authentication traffic and precisely time the replay of the 2FA request. There are no known exploits in the wild at this time.
Mitigation Recommendations
An official patch is available from Fortinet to remediate this vulnerability. Users should apply the patch promptly to affected FortiSOAR versions 7.5.0 through 7.5.2 and 7.6.0 through 7.6.3. Since this is not a cloud service, remediation depends on the user applying the update. No additional mitigation steps are indicated by the vendor advisory.
CVE-2026-23708: Escalation of privilege in Fortinet FortiSOAR PaaS
Description
A improper authentication vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR on-premise 7.6.0 through 7.6.3, FortiSOAR on-premise 7.5.0 through 7.5.2 may allow an unauthenticated attacker to bypass authentication via replaying captured 2FA request. The attack requires being able to intercept and decrypt authentication traffic and precise timing to replay the request before token expiration, which raises the attack complexity.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability CVE-2026-23708 in Fortinet FortiSOAR PaaS and on-premise versions 7.5.0 to 7.5.2 and 7.6.0 to 7.6.3 is caused by improper authentication. It enables an unauthenticated attacker to bypass authentication by replaying a captured 2FA request. Exploitation requires the attacker to intercept and decrypt authentication traffic and replay the request within the token's valid timeframe, which increases attack complexity. The vulnerability has a CVSS 3.1 base score of 6.7, indicating medium severity with network attack vector, high impact on confidentiality, integrity, and availability, and partial user interaction required. An official fix has been released by Fortinet.
Potential Impact
If exploited, this vulnerability allows an unauthenticated attacker to bypass authentication mechanisms and escalate privileges within FortiSOAR environments. The attacker can gain unauthorized access, potentially compromising confidentiality, integrity, and availability of the system. However, the attack complexity is high due to the need to intercept and decrypt authentication traffic and precisely time the replay of the 2FA request. There are no known exploits in the wild at this time.
Mitigation Recommendations
An official patch is available from Fortinet to remediate this vulnerability. Users should apply the patch promptly to affected FortiSOAR versions 7.5.0 through 7.5.2 and 7.6.0 through 7.6.3. Since this is not a cloud service, remediation depends on the user applying the update. No additional mitigation steps are indicated by the vendor advisory.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- fortinet
- Date Reserved
- 2026-01-15T13:00:41.463Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- official-fix
Threat ID: 69de650782d89c981fbf0858
Added to database: 4/14/2026, 4:02:15 PM
Last enriched: 4/14/2026, 4:17:38 PM
Last updated: 4/15/2026, 5:58:59 AM
Views: 11
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.