An Uncontrolled Resource Consumption vulnerability in Fortinet FortiSwitch below 3.6.11, 6.0.6 and 6.2.2, FortiAnalyzer below 6.2.3, FortiManager below 6.2.3 and FortiAP-S/W2 below 6.2.2 may allow an attacker to cause admin webUI denial of service (DoS) via handling special crafted HTTP requests/responses in pieces slowly, as demonstrated by Slow HTTP DoS Attacks.
[
{
"product": "Fortinet FortiSwitch",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "below 3.6.11"
},
{
"status": "affected",
"version": "6.0.6 and 6.2.2"
}
]
},
{
"product": "FortiAnalyzer",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "below 6.2.3"
}
]
},
{
"product": "FortiManager",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "below 6.2.3"
}
]
},
{
"product": "FortiAP-S/W2",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "below 6.2.2"
}
]
}
]