CVE-2023-45582
5.6MEDIUMAn improper restriction of excessive authentication attempts vulnerability [CWE-307] in FortiMail webmail version 7.2.0 through 7.2.4, 7.0.0 through 7.0.6 and before 6.4.8 may allow an unauthenticated
게시됨: 11/14/2023업데이트됨: 11/21/2024
설명
An improper restriction of excessive authentication attempts vulnerability [CWE-307] in FortiMail webmail version 7.2.0 through 7.2.4, 7.0.0 through 7.0.6 and before 6.4.8 may allow an unauthenticated attacker to perform a brute force attack on the affected endpoints via repeated login attempts.
AI 분석AI 기반
영향받는 제품
fortinetfortimail
fortinetfortimail
fortinetfortimail
fortinetfortimail
fortinetfortimail
7.4.0
참조
- https://fortiguard.com/psirt/FG-IR-23-287Vendor Advisory
- https://fortiguard.com/psirt/FG-IR-23-287Vendor Advisory