EPSS
Percentile
56.6%
An improper neutralization of special elements used in an OS command vulnerability (‘OS Command Injection’) [CWE-78] in FortiWeb may allow authenticated users to execute unauthorized code or commands via specifically crafted HTTP requests.