EPSS
Percentile
38.1%
An unintended proxy or intermediary (‘Confused Deputy’) [CWE-441] in FortiWeb may allow an authenticated attacker to use the device as proxy to reach any protected host via crafted HTTP requests.