Fortinet Fortisandbox Cloud 24.1.4436
Approved changes feed: RSS · Atom
cpe:2.3:a:fortinet:fortisandbox_cloud:24.1.4436:*:*:*:*:*:*:*
part: a version: 24.1.4436 update: *
| Vendor | Fortinet (2b06c5e0-0a17-54f4-810a-5ef236d51947) |
|---|---|
| Product | Fortisandbox Cloud (b96ce9ed-6d14-51c3-9af7-108d5a6035dc) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-26083 |
vulnerable | 2026-06-03 15:18:04.733449 |
Details available
CRITICAL (9.1)
A missing authorization vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox Cloud 5.0.2 through 5.0.5, FortiSandbox PaaS 23.4 all versions, FortiSandbox PaaS 23.3 all versions, FortiSandbox PaaS 23.1 all versions, FortiSandbox PaaS 22.2 all versions, FortiSandbox PaaS 22.1 all versions, FortiSandbox PaaS 21.4 all versions, FortiSandbox PaaS 21.3 all versions, FortiSandbox PaaS 5.0.0 through 5.0.1, FortiSandbox PaaS 4.4.5 through 4.4.8 may allow an unauthenticated attacker to execute unauthorized code or commands via HTTP requests.
Published: 2026-05-12T16:54:04.923Z
Updated: 2026-05-13T03:58:29.159Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-53679 |
vulnerable | 2026-06-03 15:03:54.510414 |
Details available
MEDIUM (6.9)
An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.2, FortiSandbox 4.4.0 through 4.4.7, FortiSandbox 4.2 all versions, FortiSandbox 4.0 all versions, FortiSandbox Cloud 24.1, FortiSandbox Cloud 23 all versions allows a remote privileged attacker to execute unauthorized code or commands via crafted HTTP or HTTPS requests.
Published: 2025-12-09T17:19:51.110Z
Updated: 2026-02-26T16:56:59.835Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.