A interpretation conflict in Fortinet IPS Engine versions 7.321, 7.166 and 6.158 allows attacker to evade IPS features via crafted TCP packets.
2023-10-10T17:15:12.560
2024-11-21T08:20:01.453
Modified
CVSSv3.1: 7.5 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | fortinet | fortios_ips_engine | ≤ 7.312 | Yes |
| Operating System | fortinet | fortios | < 7.2.4 | No |
| Application | fortinet | fortios_ips_engine | ≤ 7.165 | Yes |
| Operating System | fortinet | fortios | < 7.0.12 | No |
| Application | fortinet | fortios_ips_engine | ≤ 6.158 | Yes |
| Operating System | fortinet | fortios | < 6.4.13 | No |