Vulnerability Details CVE-2022-41333
An uncontrolled resource consumption vulnerability [CWE-400] in FortiRecorder version 6.4.3 and below, 6.0.11 and below login authentication mechanism may allow an unauthenticated attacker to make the device unavailable via crafted GET requests.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.084
EPSS Ranking 91.8%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2022-41333
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.0
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.1
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.10
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.11
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.2
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.3
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.4
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.5
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.6
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.7
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.8
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.9
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.4.0
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.4.1
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.4.2
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.4.3