BetaIT-Hub is in early access — your feedback helps us improve. Use the chat or email [email protected]

News Vulnerability
VulnerabilityFortinet PSIRT·85d ago

Authentication rate-limit bypass permits to brute force admin logins

CVSSv3 Score: 7.3 An Improper Control of Interaction Frequency vulnerability [CWE-799] in FortiWeb may allow a remote unauthenticated attacker to bypass the authentication rate-limit via crafted requests. The success of the attack depends on the attacker's resources and the password target complexity. Revised on 2026-03-10 00:00:00

Sign in to read the full article

Create a free account to access all news, downloads, and community features

Sign inCreate account

Originally published by Fortinet PSIRT

Source: https://fortiguard.fortinet.com/psirt/FG-IR-26-082

This article is shared for informational purposes. All rights belong to the original author and publisher. If you are the copyright holder and would like this content removed, please contact us.

Shared on IT-Hub by admin