CVSSv3 Score: 4.0
An Improper Neutralization of Argument Delimiters in a Command (‘Argument Injection’) vulnerability [CWE-88] in FortiDeceptor WEB UI may allow an authenticated attacker with at least read-only admin permission to read log files via HTTP crafted requests.
Revised on 2026-05-12 00:00:00
