An Uncontrolled Resource Consumption vulnerability in Fortinet FortiSwitch below 3.6.11, 6.0.6 and 6.2.2, FortiAnalyzer below 6.2.3, FortiManager below 6.2.3 and FortiAP-S/W2 below 6.2.2 may allow an attacker to cause admin webUI denial of service (DoS) via handling special crafted HTTP requests/responses in pieces slowly, as demonstrated by Slow HTTP DoS Attacks.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-19-013 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2020-04-07 11:15
Updated : 2020-04-08 12:18
NVD link : CVE-2019-17657
Mitre link : CVE-2019-17657
JSON object : View
CWE
CWE-400
Uncontrolled Resource Consumption
Products Affected
fortinet
- fortiap-w2
- fortimanager
- fortiap-s
- fortianalyzer
- fortiswitch