CVE-2023-37934
published 2024-01-10CVE-2023-37934: An allocation of resources without limits or throttling vulnerability [CWE-770] in FortiPAM 1.0 all versions allows an authenticated attacker to perform a…
medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
An allocation of resources without limits or throttling vulnerability [CWE-770] in FortiPAM 1.0 all versions allows an authenticated attacker to perform a denial of service attack via sending crafted HTTP or HTTPS requests in a high frequency.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortipam | — | — |
| fortinet | fortipam | >= 1.0.0 < 1.1.0 | 1.1.0 |
| fortinet | fortipam | 1.0.0 – 1.0.3 | — |