CVE-2024-46667: A allocation of resources without limits or throttling in Fortinet FortiSIEM 5.3 all versions, 5.4 all versions, 6.x all versions, 7.0 all versions, and 7.1.0…

high7.5CVSS 3.1

AVNACLPRNUINSUCNINAH

A allocation of resources without limits or throttling in Fortinet FortiSIEM 5.3 all versions, 5.4 all versions, 6.x all versions, 7.0 all versions, and 7.1.0 through 7.1.5 may allow an attacker to deny valid TLS traffic via consuming all allotted connections.

Affected

14 ranges

Vendor	Product	Version range	Fixed in
fortinet	fortinet	—	—
fortinet	fortisiem	—	—
fortinet	fortisiem	—	—
fortinet	fortisiem	5.3.0 – 5.3.3	—
fortinet	fortisiem	6.1.0 – 6.1.2	—
fortinet	fortisiem	6.2.0 – 6.2.1	—
fortinet	fortisiem	6.3.0 – 6.3.3	—
fortinet	fortisiem	6.4.0 – 6.4.4	—
fortinet	fortisiem	6.5.0 – 6.5.3	—
fortinet	fortisiem	6.6.0 – 6.6.5	—
fortinet	fortisiem	6.7.0 – 6.7.9	—
fortinet	fortisiem	7.0.0 – 7.0.3	—
fortinet	fortisiem	>= 7.1.0 < 7.1.6	7.1.6
fortinet	fortisiem	7.1.0 – 7.1.5	—