Vulnerability Details CVE-2024-27785
An improper neutralization of formula elements in a CSV File vulnerability [CWE-1236] in FortiAIOps version 2.0.0 may allow a remote authenticated attacker to execute arbitrary commands on a client's workstation via poisoned CSV reports.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.7%
CVSS Severity
CVSS v3 Score 5.4
References
Products affected by CVE-2024-27785
-
cpe:2.3:a:fortinet:fortiaiops:2.0.0