Unrated severityNVD Advisory· Published Mar 9, 2023· Updated Oct 22, 2024
CVE-2023-26209
CVE-2023-26209
Description
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiDeceptor 3.1.x and before allows a remote unauthenticated attacker to partially exhaust CPU and memory via sending numerous HTTP requests to the login form.
Affected products
2<=3.1.x+ 1 more
- (no CPE)range: <=3.1.x
- (no CPE)range: 3.1.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.