FortiSandbox - Geek Feed

Critical Fortinet FortiSandbox flaws now exploited in attacks

June 19, 2026June 19, 2026 geekfeed0Tagged Actively Exploited, Authentication Bypass, Command Injection, CVE-2026-25089, CVE-2026-39808, CVE-2026-39813, Fortinet, FortiSandbox, Privilege Escalation, rce, Remote Code Execution

Attackers are now exploiting several critical vulnerabilities in Fortinet’s FortiSandbox cyber threat detection platform, according to threat intelligence company Defused. Fortinet released security updates for these three critical-severity security flaws (tracked as CVE-2026-39813, CVE-2026-39808, and CVE-2026-25089) on April 14. These flaws allow unauthenticated threat actors to escalate privileges and execute unauthorized code remotely through low-complexity command injection attacks […]

2 mins read

Fortinet warns of critical RCE flaws in FortiSandbox and FortiAuthenticator

May 15, 2026May 15, 2026 geekfeed0Tagged CVE-2026-44277, FortiAuthenticator, Fortinet, FortiSandbox, rce, Remote Code Execution, Remote Command Execution, vulnerability

Fortinet has released security updates to address two critical vulnerabilities in FortiSandbox and FortiAuthenticator that could enable attackers to run commands or arbitrary code on unpatched systems. The first one, tracked as CVE-2026-44277, impacts the company’s FortiAuthenticator Identity and Access Management (IAM) solution and was patched in FortiAuthenticator versions 6.5.7, 6.6.9, and 8.0.3. “An Improper […]

1 min read