Fortinet FortiOS Resource Exhaustion Vulnerability via Unauthenticated Large File Uploads

Vulnerability

A vulnerability allowing resource exhaustion through unlimited large file uploads has been identified in Fortinet FortiOS. This issue affects versions 7.4.0 to 7.4.4, 7.2.0 to 7.2.8, 7.0.0 to 7.0.15, and 6.4.0 to 6.4.15. The vulnerability could enable an unauthenticated remote user to deplete all system memory, potentially leading to a denial of service.

Impact

Exploitation of this vulnerability could result in a denial of service, causing the system to become unresponsive or unavailable.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

7.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

7.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Fortinet FortiOS Resource Exhaustion Vulnerability via Unauthenticated Large File Uploads

Vulnerability

Impact

Affected Products

Fortinet FortiOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating