Unrated severityNVD Advisory· Published Mar 9, 2023· Updated Oct 22, 2024
CVE-2023-26208
CVE-2023-26208
Description
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiAuthenticator 6.4.x and before allows a remote unauthenticated attacker to partially exhaust CPU and memory via sending numerous HTTP requests to the login form.
Affected products
2<=6.4.x+ 1 more
- (no CPE)range: <=6.4.x
- (no CPE)range: 6.4.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.