- What is the severity of CVE-2023-40718?
- CVE-2023-40718 has been scored as a high severity vulnerability.
- How to fix CVE-2023-40718?
- To fix CVE-2023-40718: IPS Engine manual download is not needed unless device is offline and cannot download IPS Engine update automatically. Fixed in IPS Engine version 6.0159 and later. FortiOS 6.4.13 and later contains IPS engine 6.0160 as the default IPS Engine. IPS Engine 6.0162 is downloadable from FortiGuard by FortiGate units with a valid subscription running FortiOS 6.4.x. Fixed in IPS Engine version 7.0166 and later. FortiOS 7.0.12 and later contains IPS engine 7.0167 as the default IPS Engine. Fixed in IPS Engine version 7.0313 and later. FortiOS 7.2.5 and later contains IPS engine 7.0314 as the default IPS Engine. IPS Engine 7.0322 is downloadable from FortiGuard by FortiGate units with a valid subscription running FortiOS 7.2.x. FortiOS 7.4.0 and later contains IPS engine 7.0493 as the default IPS Engine.
- Is CVE-2023-40718 being actively exploited in the wild?
- As for now, there are no information to confirm that CVE-2023-40718 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
- What software or system is affected by CVE-2023-40718?
- CVE-2023-40718 affects Fortinet IPS Engine.