CVE 9.1 CRITICAL

CVE-2026-25089_CVE-2026-25089

June 9, 2026 invoker category_cve

9.1 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C

Description

A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox 4.2 all versions, FortiSandbox Cloud 5.0.4 through 5.0.5, FortiSandbox PaaS 5.0.4 through 5.0.5 may allow an unauthenticated attacker to execute unauthorized commands via specifically crafted HTTP requests

AI Analysis

OS command injection vulnerability allowing unauthorized command execution via crafted HTTP requests

Basic Information

ID CVE-2026-25089

Source fortinet

Published Jun 9, 2026 at 14:27

Modified Jun 9, 2026 at 15:36

Affected Product

Vendor Fortinet

Product FortiSandbox

Version 5.0.0

Affected Versions Fortinet FortiSandbox 5.0.0
Fortinet FortiSandbox 4.4.0
Fortinet FortiSandbox 4.2.1
Fortinet FortiSandbox Cloud 5.0.4
Fortinet FortiSandbox PaaS 5.0.4

CWE Classification

CWE-78

AI Assessment

AI Score 9.1 / 10

AI Severity Critical

Vendor Fortinet

Product FortiSandbox

Version 5.0.0-5.0.5, 4.4.0-4.4.8, 4.2, 5.0.4-5.0.5

References

fortiguard.fortinet.com /psirt/FG-IR-26-141

{
    "lastseen": "",
    "description": "A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox 4.2 all versions, FortiSandbox Cloud 5.0.4 through 5.0.5, FortiSandbox PaaS 5.0.4 through 5.0.5 may allow an unauthenticated attacker to execute unauthorized commands via specifically crafted HTTP requests",
    "published": "2026-06-09T14:27:47.492Z",
    "modified": "2026-06-09T15:36:21.741Z",
    "type": "cve",
    "title": "CVE-2026-25089",
    "source": "fortinet",
    "references": "https://fortiguard.fortinet.com/psirt/FG-IR-26-141",
    "id": "CVE-2026-25089",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "Fortinet FortiSandbox 5.0.0\nFortinet FortiSandbox 4.4.0\nFortinet FortiSandbox 4.2.1\nFortinet FortiSandbox Cloud 5.0.4\nFortinet FortiSandbox PaaS 5.0.4",
    "sourceHref": "",
    "cvss": {
        "score": 9.1,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "FortiSandbox",
    "version": "5.0.0",
    "vendor": "Fortinet",
    "ai_description": "OS command injection vulnerability allowing unauthorized command execution via crafted HTTP requests",
    "ai_severity": "Critical",
    "ai_vendor": "Fortinet",
    "ai_product": "FortiSandbox",
    "ai_version": "5.0.0-5.0.5, 4.4.0-4.4.8, 4.2, 5.0.4-5.0.5",
    "ai_score": 9.1
}

💭 Join the Security Discussion ❌ Cancel Reply