VYPR
Unrated severityNVD Advisory· Published Nov 14, 2023· Updated Aug 30, 2024

CVE-2023-45582

CVE-2023-45582

Description

An improper restriction of excessive authentication attempts vulnerability [CWE-307] in FortiMail webmail version 7.2.0 through 7.2.4, 7.0.0 through 7.0.6 and before 6.4.8 may allow an unauthenticated attacker to  perform a brute force attack on the affected endpoints via repeated login attempts.

Affected products

2
  • Fortinet/Fortimailllm-fuzzy2 versions
    >=6.4.8, <=7.2.4+ 1 more
    • (no CPE)range: >=6.4.8, <=7.2.4
    • (no CPE)range: 7.4.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.