CVE-2022-41333

An uncontrolled resource consumption vulnerability [CWE-400] in FortiRecorder version 6.4.3 and below, 6.0.11 and below login authentication mechanism may allow an unauthenticated attacker to make the device unavailable via crafted GET requests.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:fortinet:fortirecorder_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:fortinet:fortirecorder_firmware:*:*:*:*:*:*:*:*

History

21 Nov 2024, 07:23

Type Values Removed Values Added
References () http://packetstormsecurity.com/files/171766/FortiRecorder-6.4.3-Denial-Of-Service.html - () http://packetstormsecurity.com/files/171766/FortiRecorder-6.4.3-Denial-Of-Service.html -
References () https://fortiguard.com/psirt/FG-IR-22-388 - Vendor Advisory () https://fortiguard.com/psirt/FG-IR-22-388 - Vendor Advisory

Information

Published : 2023-03-07 17:15

Updated : 2024-11-21 07:23


NVD link : CVE-2022-41333

Mitre link : CVE-2022-41333

CVE.ORG link : CVE-2022-41333


JSON object : View

Products Affected

fortinet

  • fortirecorder_firmware
CWE
CWE-400

Uncontrolled Resource Consumption