An uncontrolled resource consumption vulnerability [CWE-400] in FortiRecorder version 6.4.3 and below, 6.0.11 and below login authentication mechanism may allow an unauthenticated attacker to make the device unavailable via crafted GET requests.
CPE | Name | Operator | Version |
---|---|---|---|
fortirecorder_firmware | ge | 6.4.0 | |
fortirecorder_firmware | le | 6.4.3 | |
fortirecorder_firmware | ge | 6.0.0 | |
fortirecorder_firmware | le | 6.0.11 |