CVE-2024-23106

8.1HIGH

An improper restriction of excessive authentication attempts [CWE-307] in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack ag

发布于: 1/14/2025更新于: 7/16/2025
在NVD查看在MITRE查看

描述

An improper restriction of excessive authentication attempts [CWE-307] in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack against the FortiClientEMS console via crafted HTTP or HTTPS requests.

AI分析AI驱动

受影响产品

fortinetforticlientems
fortinetforticlientems
fortinetforticlientems
fortinetforticlientems

参考资料