CVE-2023-46717 Information

Description

An improper authentication vulnerability [CWE-287] in FortiOS versions 7.4.1 and below versions 7.2.6 and below and versions 7.0.12 and below when configured with FortiAuthenticator in HA may allow a readonly user to gain read-write access via successive login attempts.

Reference

https://fortiguard.com/psirt/FG-IR-23-424