CVE-2022-42478
An Improper Restriction of Excessive Authentication Attempts [CWE-307] in FortiSIEM below 7.0.0 may allow a non-privileged user with access to several endpoints to brute force attack these endpoints.
| Software | From | Fixed in |
|---|---|---|
| fortinet / fortisiem | 5.2.5 | 5.2.5.x |
| fortinet / fortisiem | 6.4.1 | 6.4.1.x |
| fortinet / fortisiem | 6.4.0 | 6.4.0.x |
| fortinet / fortisiem | 6.3.0 | 6.3.3.x |
| fortinet / fortisiem | 6.2.1 | 6.2.1.x |
| fortinet / fortisiem | 6.2.0 | 6.2.0.x |
| fortinet / fortisiem | 5.4.0 | 5.4.0.x |
| fortinet / fortisiem | 5.3.0 | 5.3.3.x |
| fortinet / fortisiem | 5.2.2 | 5.2.2.x |
| fortinet / fortisiem | 5.2.1 | 5.2.1.x |
| fortinet / fortisiem | 5.1.0 | 5.1.3.x |
| fortinet / fortisiem | 6.7.0 | 6.7.0.x |
| fortinet / fortisiem | 6.6.0 | 6.6.0.x |
| fortinet / fortisiem | 6.6.1 | 6.6.1.x |
| fortinet / fortisiem | 6.6.2 | 6.6.2.x |
| fortinet / fortisiem | 6.6.3 | 6.6.3.x |
| fortinet / fortisiem | 6.5.0 | 6.5.0.x |
| fortinet / fortisiem | 6.5.1 | 6.5.1.x |
| fortinet / fortisiem | 6.4.2 | 6.4.2.x |
| fortinet / fortisiem | 5.2.6 | 5.2.6.x |
| fortinet / fortisiem | 5.2.7 | 5.2.7.x |
| fortinet / fortisiem | 5.2.8 | 5.2.8.x |
| fortinet / fortisiem | 6.1.0 | 6.1.0.x |
| fortinet / fortisiem | 6.1.1 | 6.1.1.x |
| fortinet / fortisiem | 6.1.2 | 6.1.2.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime