Web Application Security Flaw in FortiSOAR by Fortinet
CVE-2022-38379
3.4LOW
What is CVE-2022-38379?
In FortiSOAR versions 7.0.0 through 7.0.3 and 7.2.0, an authenticated attacker can exploit a weakness in input handling, allowing the injection of malicious HTML tags. This vulnerability arises from improper neutralization during web page generation, which may compromise the integrity and security of web applications utilizing FortiSOAR.
Affected Version(s)
FortiSOAR 7.2.0
FortiSOAR 7.0.0 <= 7.0.3