説明
An origin validation error [CWE-346] vulnerability in Fortinet FortiOS IPSec VPN version 7.4.0 through 7.4.1 and version 7.2.6 and below allows an authenticated IPSec VPN user with dynamic IP addressing to send (but not receive) packets spoofing the IP of another user via crafted network packets.
AI分析AIによる分析
影響を受ける製品
fortinetfortios
参照
- https://fortiguard.com/psirt/FG-IR-23-407Vendor Advisory