CVE-2024-47572

Name of the Vulnerable Software and Affected Versions: Fortinet FortiSOAR versions 7.2.1 through 7.4.1

Description: The issue is related to an improper neutralization of formula elements in a csv file, which can allow a remote attacker to execute unauthorized code or commands by manipulating the csv file. This can be done via the csv file, where an attacker can inject malicious code.

Recommendations: For Fortinet FortiSOAR versions 7.2.1 through 7.4.1, update to a version that includes the fix for this issue to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.