Fortinet Community

i noticed handful CVEs are set to pass in default including log4j. Aren't CVEs especially critical supposed to be blocked in default? i just set all above medium to be blocked. what is the impact if i set all CVEs blocked?