A missing release of memory after its effective lifetime vulnerability in the Webmail of FortiMail 6.4.0 through 6.4.4 and 6.2.0 through 6.2.6 may allow an unauthenticated remote attacker to exhaust available memory via specifically crafted login requests.
History

Fri, 25 Oct 2024 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: fortinet

Published: 2021-07-12T12:53:27

Updated: 2024-10-25T13:55:49.687Z

Reserved: 2021-01-25T00:00:00

Link: CVE-2021-26090

cve-icon Vulnrichment

Updated: 2024-08-03T20:19:19.779Z

cve-icon NVD

Status : Modified

Published: 2021-07-12T13:15:07.827

Modified: 2024-11-21T05:55:51.150

Link: CVE-2021-26090

cve-icon Redhat

No data.