Lucene search

K
fortinetFortiGuard LabsFG-IR-20-078
HistoryMar 07, 2023 - 12:00 a.m.

FortiAuthenticator, FortiDeceptor & FortiMail - Improper restriction over excessive authentication attempts

2023-03-0700:00:00
FortiGuard Labs
www.fortiguard.com
10
vulnerability
fortiauthenticator
fortideceptor
fortimail
cpu
memory
http requests
login form

0.001 Low

EPSS

Percentile

46.9%

An improper restriction of excessive authentication attempts vulnerability [CWE-307] in FortiAuthenticator, FortiDeceptor & FortiMail may allow a remote unauthenticated attacker to partially exhaust CPU and memory via sending numerous HTTP requests to the login form.

0.001 Low

EPSS

Percentile

46.9%

Related for FG-IR-20-078