Skip to content

#cve-2026-39808

2 articles

Security Alerts Apr 15, 2026

Critical Vulnerabilities in Fortinet Products – FortiSandbox, FortiDDoS-F, and FortiAnalyzer Cloud (April 2026)

Fortinet has published PSIRT advisories for four vulnerabilities across its products. Two critical flaws in FortiSandbox allow unauthenticated attackers to achieve remote code execution and authentication bypass with privilege escalation...

Security Alerts Apr 14, 2026

CVE-2026-39808: OS command injection in Fortinet FortiSandbox

A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.8 may allow attacker to execute unauthorized code ...