Sign-up

ID

VAR-202606-1595


CVE

CVE-2026-25089


TITLE

fortinet's FortiSandbox In multiple products such as OS  Command injection vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2026-019381

DESCRIPTION

A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox 4.2 all versions, FortiSandbox Cloud 5.0.4 through 5.0.5, FortiSandbox PaaS 5.0.4 through 5.0.5 may allow an unauthenticated attacker to execute unauthorized commands via specifically crafted HTTP requests. This vulnerability allows an unauthenticated attacker to use a specially crafted attacker. HTTP It may be possible to execute malicious commands through the request.- All information handled by the software may be leaked to external parties. - All information handled by the software may be overwritten. - The software may completely shut down

Trust: 1.62

sources: NVD: CVE-2026-25089 // JVNDB: JVNDB-2026-019381

AFFECTED PRODUCTS

vendor:fortinetmodel:fortisandboxscope:lteversion:4.2.8

Trust: 1.0

vendor:fortinetmodel:fortisandboxscope:gteversion:5.0.0

Trust: 1.0

vendor:fortinetmodel:fortisandbox cloudscope:ltversion:5.0.6

Trust: 1.0

vendor:fortinetmodel:fortisandbox cloudscope:gteversion:5.0.4

Trust: 1.0

vendor:fortinetmodel:fortisandboxscope:gteversion:4.4.0

Trust: 1.0

vendor:fortinetmodel:fortisandboxscope:gteversion:4.2.0

Trust: 1.0

vendor:fortinetmodel:fortisandboxscope:ltversion:4.4.9

Trust: 1.0

vendor:fortinetmodel:fortisandboxscope:ltversion:5.0.6

Trust: 1.0

vendor:fortinetmodel:fortisandbox paasscope:ltversion:5.0.6

Trust: 1.0

vendor:fortinetmodel:fortisandbox paasscope:gteversion:5.0.4

Trust: 1.0

vendor:フォーティネットmodel:fortisandboxscope: - version: -

Trust: 0.8

vendor:フォーティネットmodel:fortisandbox cloudscope: - version: -

Trust: 0.8

vendor:フォーティネットmodel:fortisandbox paasscope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2026-019381 // NVD: CVE-2026-25089

CVSS

SEVERITY

CVSSV2

CVSSV3

psirt@fortinet.com: CVE-2026-25089
value: CRITICAL

Trust: 1.0

OTHER: JVNDB-2026-019381
value: CRITICAL

Trust: 0.8

psirt@fortinet.com: CVE-2026-25089
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.1

Trust: 1.0

OTHER: JVNDB-2026-019381
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2026-019381 // NVD: CVE-2026-25089

PROBLEMTYPE DATA

problemtype:CWE-78

Trust: 1.0

problemtype:OS Command injection (CWE-78) [ others ]

Trust: 0.8

sources: JVNDB: JVNDB-2026-019381 // NVD: CVE-2026-25089

PATCH

title:PSIRT | FortiGuard Labsurl:https://fortiguard.fortinet.com/psirt/FG-IR-26-141

Trust: 0.8

sources: JVNDB: JVNDB-2026-019381

EXTERNAL IDS

db:NVDid:CVE-2026-25089

Trust: 2.6

db:JVNDBid:JVNDB-2026-019381

Trust: 0.8

sources: JVNDB: JVNDB-2026-019381 // NVD: CVE-2026-25089

REFERENCES

url:https://fortiguard.fortinet.com/psirt/fg-ir-26-141

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2026-25089

Trust: 0.8

sources: JVNDB: JVNDB-2026-019381 // NVD: CVE-2026-25089

SOURCES

db:JVNDBid:JVNDB-2026-019381
db:NVDid:CVE-2026-25089

LAST UPDATE DATE

2026-06-19T23:02:09.742000+00:00


SOURCES UPDATE DATE

db:JVNDBid:JVNDB-2026-019381date:2026-06-12T05:33:00
db:NVDid:CVE-2026-25089date:2026-06-11T21:39:00.893

SOURCES RELEASE DATE

db:JVNDBid:JVNDB-2026-019381date:2026-06-12T00:00:00
db:NVDid:CVE-2026-25089date:2026-06-09T16:16:39.943