Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2023-46715

An origin validation error [CWE-346] vulnerability in Fortinet FortiOS IPSec VPN version 7.4.0 through 7.4.1 and version 7.2.6 and below allows an authenticated IPSec VPN user with dynamic IP addressing to send (but not receive) packets spoofing the IP of another user via crafted network packets.

  • Published: Jan 14, 2025
  • Updated: May 4, 2025
  • CVE: CVE-2023-46715
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CWEs:

Software From Fixed in
fortinet / fortios 6.2.0 7.4.2