Описание
An allocation of resources without limits or throttling vulnerability [CWE-770] in FortiPAM 1.0 all versions allows an authenticated attacker to perform a denial of service attack via sending crafted HTTP or HTTPS requests in a high frequency.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 1.0.0 (включая) до 1.1.0 (исключая)
cpe:2.3:o:fortinet:fortipam:*:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00143
Низкий
4.3 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-770
Связанные уязвимости
CVSS3: 4.3
github
около 2 лет назад
An allocation of resources without limits or throttling vulnerability [CWE-770] in FortiPAM 1.0 all versions allows an authenticated attacker to perform a denial of service attack via sending crafted HTTP or HTTPS requests in a high frequency.
EPSS
Процентиль: 35%
0.00143
Низкий
4.3 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-770