CVE-2022-35846
8.1HIGHAn improper restriction of excessive authentication attempts vulnerability [CWE-307] in FortiTester Telnet port 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticat
Published: 10/18/2022Updated: 11/21/2024
Description
An improper restriction of excessive authentication attempts vulnerability [CWE-307] in FortiTester Telnet port 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticated attacker to guess the credentials of an admin user via a brute force attack.
AI AnalysisPowered by AI
Affected Products
fortinetfortitester
fortinetfortitester
fortinetfortitester
References
- https://fortiguard.com/psirt/FG-IR-22-244Vendor Advisory
- https://fortiguard.com/psirt/FG-IR-22-244Vendor Advisory