Vulnerability Details CVE-2022-41333
An uncontrolled resource consumption vulnerability [CWE-400] in FortiRecorder version 6.4.3 and below, 6.0.11 and below login authentication mechanism may allow an unauthenticated attacker to make the device unavailable via crafted GET requests.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.102
EPSS Ranking 92.9%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2022-41333
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.0
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.1
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.10
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.11
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.2
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.3
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.4
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.5
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.6
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.7
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.8
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.0.9
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.4.0
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.4.1
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.4.2
-
cpe:2.3:o:fortinet:fortirecorder_firmware:6.4.3