Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An allocation of resources without limits or throttling vulnerability [CWE-770] in FortiPAM 1.0 all versions allows an authenticated attacker to perform a denial of service attack via sending crafted HTTP or HTTPS requests in a high frequency.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
不加限制或调节的资源分配
Vulnerability Title
Fortinet FortiPAM 安全漏洞
Vulnerability Description
Fortinet FortiPAM是美国飞塔(Fortinet)公司的一款权限访问控制的平台。 Fortinet FortiPAM 1.0版本存在安全漏洞,该漏洞源于资源分配没有限制。攻击者利用该漏洞通过高频发送特制的 HTTP 或 HTTPS 请求来执行拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A