Описание
An Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2.10 and below; FortiSASE version 23.4.b FortiOS tenant IPsec IKE service may allow an authenticated attacker to crash the IPsec tunnel via crafted requests, resulting in potential denial of service.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
EPSS
3.5 Low
CVSS3
6.5 Medium
CVSS3
Дефекты
Связанные уязвимости
An Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2.10 and below; FortiSASE version 23.4.b FortiOS tenant IPsec IKE service may allow an authenticated attacker to crash the IPsec tunnel via crafted requests, resulting in potential denial of service.
Уязвимость службы IPsec IKE операционной системы FortiOS, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
3.5 Low
CVSS3
6.5 Medium
CVSS3