Uncontrolled Resource Consumption Vulnerability in FortiRecorder Login Authentication Mechanism

Uncontrolled Resource Consumption Vulnerability in FortiRecorder Login Authentication Mechanism

CVE-2022-41333 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

An uncontrolled resource consumption vulnerability [CWE-400] in FortiRecorder version 6.4.3 and below, 6.0.11 and below login authentication mechanism may allow an unauthenticated attacker to make the device unavailable via crafted GET requests.

Learn more about our Web Application Penetration Testing UK.