Описание
An allocation of resources without limits or throttling [CWE-770] vulnerability in FortiOS versions 7.6.0, versions 7.4.4 through 7.4.0, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow a remote unauthenticated attacker to prevent access to the GUI via specially crafted requests directed at specific endpoints.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 6.4.0 (включая) до 7.2.9 (исключая)Версия от 7.4.0 (включая) до 7.4.5 (исключая)
Одно из
cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*
cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*
cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00159
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-770
Связанные уязвимости
CVSS3: 5.3
github
около 1 года назад
An allocation of resources without limits or throttling [CWE-770] vulnerability in FortiOS versions 7.6.0, versions 7.4.4 through 7.4.0, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow a remote unauthenticated attacker to prevent access to the GUI via specially crafted requests directed at specific endpoints.
EPSS
Процентиль: 37%
0.00159
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-770