An improper restriction of excessive authentication attempts vulnerability [CWE-307] in FortiMail webmail version 7.2.0 through 7.2.4, 7.0.0 through 7.0.6 and before 6.4.8 may allow an unauthenticated attacker to perform a brute force attack on the affected endpoints via repeated login attempts.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-23-287 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2023-11-14T18:05:34.247Z
Updated: 2023-11-14T18:05:34.247Z
Reserved: 2023-10-09T08:01:29.296Z
Link: CVE-2023-45582
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-14T18:15:55.017
Modified: 2023-11-18T03:28:51.550
Link: CVE-2023-45582
JSON object: View
Redhat Information
No data.
CWE