VYPR
Unrated severityNVD Advisory· Published Jan 14, 2025· Updated Feb 18, 2025

CVE-2024-23106

CVE-2024-23106

Description

An improper restriction of excessive authentication attempts [CWE-307] in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack against the FortiClientEMS console via crafted HTTP or HTTPS requests.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Fortinet/Forticlientemsllm-fuzzy2 versions
    >= 7.2.0, <= 7.2.4 || < 7.0.10+ 1 more
    • (no CPE)range: >= 7.2.0, <= 7.2.4 || < 7.0.10
    • (no CPE)range: 7.2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.