CVE-2023-40718

Name of the Vulnerable Software and Affected Versions Fortinet IPS Engine versions 6.158, 7.166, 7.321

Description The issue is related to an interpretation conflict in the Fortinet IPS Engine, which can be exploited by an attacker to evade IPS features. This can be achieved via crafted TCP packets, potentially allowing an unauthenticated remote attacker to bypass existing security restrictions and evade NGFW policies or IPS Engine protection.

Recommendations For Fortinet IPS Engine version 6.158, update to a fixed version to resolve the issue. For Fortinet IPS Engine version 7.166, update to a fixed version to resolve the issue. For Fortinet IPS Engine version 7.321, update to a fixed version to resolve the issue. As a temporary workaround, consider restricting the use of crafted TCP packets to minimize the risk of exploitation.