CVE-2026-23708
Analyzed Analyzed - Analysis Complete
Authentication Bypass via 2FA Replay in Fortinet FortiSOAR

Publication date: 2026-04-14

Last updated on: 2026-05-06

Assigner: Fortinet, Inc.

Description
A improper authentication vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR on-premise 7.6.0 through 7.6.3, FortiSOAR on-premise 7.5.0 through 7.5.2 may allow an unauthenticated attacker to bypass authentication via replaying captured 2FA request. The attack requires being able to intercept and decrypt authentication traffic and precise timing to replay the request before token expiration, which raises the attack complexity.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-14
Last Modified
2026-05-06
Generated
2026-06-16
AI Q&A
2026-04-14
EPSS Evaluated
2026-06-15
NVD
CVE-2026-23708
EUVD
EUVD-2026-22329
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
fortinet fortisoar From 7.5.0 (inc) to 7.5.3 (exc)
fortinet fortisoar From 7.6.0 (inc) to 7.6.4 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-862 The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
CWE-287 When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is an improper authentication issue in Fortinet FortiSOAR PaaS and on-premise versions 7.5.0 through 7.6.3. It allows an unauthenticated attacker to bypass the authentication process by replaying a captured two-factor authentication (2FA) request.

To exploit this vulnerability, the attacker must be able to intercept and decrypt the authentication traffic and then replay the 2FA request with precise timing before the token expires. This makes the attack complex to perform.

Impact Analysis

If exploited, this vulnerability can allow an attacker to bypass authentication controls without valid credentials, potentially gaining unauthorized access to the FortiSOAR system.

Such unauthorized access could lead to compromise of confidentiality, integrity, and availability of the system and its data, as indicated by the CVSS score which rates the impact on confidentiality, integrity, and availability as high.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-23708. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart