{"vulnerability": "CVE-2023-48791", "sightings": [{"uuid": "5220a4ed-468c-4ca7-b97c-3a7c058026d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48791", "type": "seen", "source": "https://t.me/arpsyndicate/2363", "content": "#ExploitObserverAlert\n\nCVE-2023-48791\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-48791. An improper neutralization of special elements used in a command ('Command Injection') vulnerability [CWE-77] in FortiPortal version 7.2.0, version 7.0.6 and below may allow a remote authenticated attacker with at least R/W permission to execute unauthorized commands via specifically crafted arguments in the Schedule System Backup page field.\n\nFIRST-EPSS: 0.001100000\nNVD-IS: 5.9\nNVD-ES: 2.8", "creation_timestamp": "2024-01-03T21:18:59.000000Z"}]}