CRITICAL🇵🇱 Wersja polska

CVE-2026-26083

CVSS 9.8v3.1pub. 2026-05-12upd. 2026-05-15

A missing authorization vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox Cloud 5.0.2 through 5.0.5, FortiSandbox PaaS 23.4 all versions, FortiSandbox PaaS 23.3 all versions, FortiSandbox PaaS 23.1 all versions, FortiSandbox PaaS 22.2 all versions, FortiSandbox PaaS 22.1 all versions, FortiSandbox PaaS 21.4 all versions, FortiSandbox PaaS 21.3 all versions, FortiSandbox PaaS 5.0.0 through 5.0.1, FortiSandbox PaaS 4.4.5 through 4.4.8 may allow an unauthenticated attacker to execute unauthorized code or commands via HTTP requests.

🤖 AI Analysis
How it works

The vulnerability results from missing authorization verification for specific HTTP requests handled by FortiSandbox. An attacker without any credentials can send crafted HTTP requests directly to the vulnerable system, bypassing access control mechanisms. Due to the network attack vector (AV:N), lack of attack complexity requirements (AC:L), and no need for user interaction, exploitation can be performed remotely and fully automatically.

Impact

An unauthenticated attacker can remotely execute arbitrary code or system commands on the vulnerable device, leading to complete compromise of confidentiality, integrity, and availability of the system (C:H/I:H/A:H).

Mitigation & patch

Apply patches available from the vendor according to references published by Fortinet at https://fortiguard.fortinet.com/psirt/FG-IR-26-136. Until patches are implemented, it is recommended to restrict network access to the FortiSandbox HTTP interface only to trusted IP addresses and isolate the device from public networks.

Who is affected

Fortinet FortiSandbox 5.0.0–5.0.1, FortiSandbox 4.4.0–4.4.8; FortiSandbox Cloud 5.0.2–5.0.5; FortiSandbox PaaS 23.4 (all versions), 23.3 (all versions), 23.1 (all versions), 22.2 (all versions), 22.1 (all versions), 21.4 (all versions), 21.3 (all versions), 5.0.0–5.0.1, 4.4.5–4.4.8

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Fortinet Fortisandbox

    APP
    Fortinet
    4.4.0 – 4.4.9 (bez)5.0.0 – 5.0.2 (bez)
  • Fortinet Fortisandbox Cloud

    APP
    Fortinet
    24.1.443623.1.4245 – 23.4.43745.0.2 – 5.0.6 (bez)
  • Fortinet Fortisandbox Paas

    APP
    Fortinet
    4.4.5 – 4.4.9 (bez)5.0.0 – 5.0.2 (bez)21.3.4055 – 23.4.4374
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2026-25089CRITICAL9.8PL ✓ten sam produkt

Command injection w Fortinet FortiSandbox — dostęp bez uwierzytelnienia

CVE-2026-39808CRITICAL9.8PL ✓ten sam produkt

Command Injection w Fortinet FortiSandbox umożliwiający RCE

CVE-2026-39813CRITICAL9.8ten sam produkt

A path traversal: '../filedir' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 ...

CVE-2026-25836HIGH7.2ten sam produkt

An improper neutralization of special elements used in an os command ('os command injection') vulnerability in...

CVE-2025-52436HIGH8.8ten sam produkt

An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability [CWE-79]...