CVE-2024-27785 Information

Description

An improper neutralization of formula elements in a CSV File vulnerability [CWE-1236] in FortiAIOps version 2.0.0 may allow a remote authenticated attacker to execute arbitrary commands on a client’s workstation via poisoned CSV reports.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-24-073