An uncontrolled resource consumption vulnerability [CWE-400] in FortiRecorder version 6.4.3 and below, 6.0.11 and below login authentication mechanism may allow an unauthenticated attacker to make the device unavailable via crafted GET requests.
References
Configurations
Configuration 1 (hide)
|
History
14 Mar 2023, 19:32
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:fortinet:fortirecorder_firmware:*:*:*:*:*:*:*:* | |
References | (MISC) https://fortiguard.com/psirt/FG-IR-22-388 - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
CWE | CWE-400 |
07 Mar 2023, 17:55
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-03-07 17:15
Updated : 2024-02-04 23:14
NVD link : CVE-2022-41333
Mitre link : CVE-2022-41333
CVE.ORG link : CVE-2022-41333
JSON object : View
Products Affected
fortinet
- fortirecorder_firmware
CWE
CWE-400
Uncontrolled Resource Consumption