CVE-2023-37934

Name of the Vulnerable Software and Affected Versions FortiPAM version 1.0

Description The issue allows an authenticated attacker to perform a denial of service attack by sending crafted HTTP or HTTPS requests at a high frequency, due to an allocation of resources without limits or throttling.

Recommendations For FortiPAM version 1.0, consider restricting access to limit the potential for denial of service attacks until a patch is available. As a temporary workaround, restrict the frequency of HTTP or HTTPS requests to minimize the risk of exploitation.