CVE-2022-29056

LOW

Fortinet FortiMail <6.4.0, 6.2.0-6.2.4 - DoS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-29056. PoCs published by chessredoffsec.

AI-analyzed exploit summary This is a Python-based PoC exploit for CVE-2022-29056, which automates HTTP POST requests to a target login endpoint with configurable payload sizes to test for potential vulnerabilities. It includes a Tkinter GUI for user interaction and threading for parallel execution.

Description

A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiMail version 6.4.0, version 6.2.0 through 6.2.4 and before 6.0.9 allows a remote unauthenticated attacker to partially exhaust CPU and memory via sending numerous HTTP requests to the login form.

Exploits (1)

nomisec WORKING POC 1 stars
by chessredoffsec · poc
https://github.com/chessredoffsec/CVE-2022-29056

This is a Python-based PoC exploit for CVE-2022-29056, which automates HTTP POST requests to a target login endpoint with configurable payload sizes to test for potential vulnerabilities. It includes a Tkinter GUI for user interaction and threading for parallel execution.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Theoretical
Target: Unknown (likely a web application with a login endpoint)
No auth needed
Prerequisites: Python 3.x · requests library · valid target IP · accessible /logincheck endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 3.7
EPSS 0.0181
EPSS Percentile 75.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-307
Status published
Products (2)
fortinet/fortimail 6.4.0
fortinet/fortimail 6.0.0 - 6.0.10
Published Mar 09, 2023
Tracked Since Feb 18, 2026