Main Vulnerability Database Vulnerabilities #VU126119

Improper Authentication in FortiSOAR - CVE-2026-23708

Published: April 15, 2026

Vulnerability identifier: #VU126119

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2026-23708

CWE-ID: CWE-287

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Fortinet, Inc

Affected software:
FortiSOAR

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to compromise the affected system.

The vulnerability exists due to improper authentication. An unauthenticated attacker can bypass authentication via replaying captured 2FA request. The attack requires being able to intercept and decrypt authentication traffic and precise timing to replay the request before token expiration.

How to mitigate CVE-2026-23708

Install update from vendor's website.

Sources

https://www.fortiguard.com/psirt/FG-IR-26-101

Improper Authentication in FortiSOAR - CVE-2026-23708

Detailed vulnerability description

How to mitigate CVE-2026-23708

Sources

Please verify you're human