Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An improper neutralization of formula elements in a CSV File [CWE-1236] vulnerability in Fortinet FortiAIOps 2.0.0 may allow a remote authenticated attacker to execute arbitrary commands on a client's workstation via poisoned CSV reports.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:L
Vulnerability Type
CWE-1236
Vulnerability Title
Fortinet FortiAIOps 安全漏洞
Vulnerability Description
Fortinet FortiAIOps是美国飞塔(Fortinet)公司的一款结合人工智能与机器学习 (AI/ML) 的 Fortinet 网络配套解决方案。 Fortinet FortiAIOps 2.0.0版本存在安全漏洞,该漏洞源于存在CSV文件中公式元素的不当中和漏洞,可能允许经过身份验证的远程攻击者通过CSV报告在客户端的工作站上执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A