Fortimail@6.4.0 Security Vulnerabilities and Issues — Fortimail@6.4.0 CVE List

Lucene search

FortinetFortimail6.4.0

2 matches found

CVE•added 2023/03/09 3:15 p.m.•67 views

CVE-2022-29056

A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiMail version 6.4.0, version 6.2.0 through 6.2.4 and before 6.0.9 allows a remote unauthenticated attacker to partially exhaust CPU and memory via sending numerous HTTP requests to the login form.

5.3CVSS5.4AI score0.06948EPSS

CVE•added 2022/01/05 12:15 p.m.•40 views

CVE-2020-15933

A exposure of sensitive information to an unauthorized actor in Fortinet FortiMail versions 6.0.9 and below, FortiMail versions 6.2.4 and below FortiMail versions 6.4.1 and 6.4.0 allows attacker to obtain potentially sensitive software-version information via client-side resources inspection.

5.3CVSS5AI score0.00237EPSS