Ethical Hacking News
Fortinet has issued a warning about three critical vulnerabilities in its FortiSandbox product, which are being actively exploited by attackers. The vulnerabilities highlight the need for timely patching and improved cybersecurity defenses, as well as the importance of staying vigilant and proactive in the face of evolving threats.
Fortinet has issued a warning about three critical vulnerabilities in its FortiSandbox product. The vulnerabilities, CVE-2026-39813, CVE-2026-39808, and CVE-2026-25089, have been actively exploited by attackers. The first two vulnerabilities are path traversal vulnerabilities with a CVSS score of 9.1 and 9.8, respectively. The third vulnerability is an operating system command injection flaw that can execute unauthorized commands via HTTP requests. The exploit for CVE-2026-25089 appears to have been built using artificial intelligence (AI) assistance. The incident highlights the need for improved patch management and cybersecurity defenses.
Fortinet, a leading provider of cybersecurity solutions, has issued a warning about three critical vulnerabilities in its FortiSandbox product, which is used to detect and prevent malicious files from being executed on a network. The vulnerabilities, identified as CVE-2026-39813, CVE-2026-39808, and CVE-2026-25089, have been actively exploited by attackers, highlighting the need for timely patching and improved cybersecurity defenses.
The first two vulnerabilities, CVE-2026-39813 and CVE-2026-39808, are both path traversal vulnerabilities that allow an unauthenticated attacker to bypass authentication via specially crafted HTTP requests. These vulnerabilities have a CVSS score of 9.1 and 9.8, respectively, indicating a high level of severity. The patches for these vulnerabilities were available in April, but apparently, they were not fast enough, as the exploits are still being actively used.
The third vulnerability, CVE-2026-25089, is an operating system command injection flaw that allows an unauthenticated attacker to execute unauthorized commands via specifically crafted HTTP requests. This vulnerability has a CVSS score of 9.1 and affects FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS WEB UI. The patch for this vulnerability was dropped last week, but it is already being used in the wild.
What's particularly concerning about CVE-2026-25089 is that the exploit for this vulnerability appears to have been built using artificial intelligence (AI) assistance. Defused Cyber researchers speculate that the exploit shows signs of being developed using an AI model, but it is also bugged. This suggests that attackers are throwing broken AI-generated code at unpatched systems and still finding traction.
The incident highlights the need for improved patch management and cybersecurity defenses. Fortinet gear has been drawing attention in recent times, with multiple vulnerabilities being actively exploited before patches were available. The window between disclosure and active exploitation has become uncomfortably short, with patch cycles measured in weeks now measured in days.
As cybersecurity defenders struggle to keep pace with the rapidly evolving threat landscape, this incident serves as a reminder of the importance of staying vigilant and proactive. It is essential for organizations that use Fortinet products to prioritize patching and vulnerability management, as well as to invest in advanced security controls and incident response capabilities.
In conclusion, the exploitation of these three critical FortiSandbox vulnerabilities highlights the growing concern for cybersecurity defenders. The need for timely patching, improved cybersecurity defenses, and proactive incident response strategies cannot be overstated. As the threat landscape continues to evolve, it is essential for organizations to stay vigilant and prepared to face the challenges that lie ahead.
Related Information:
https://www.ethicalhackingnews.com/articles/Fortinet-FortiSandbox-Flaws-A-Growing-Concern-for-Cybersecurity-Defenders-ehn.shtml
https://securityaffairs.com/193709/ai/fortinet-warned-as-three-critical-fortisandbox-bugs-come-under-attack.html
https://nvd.nist.gov/vuln/detail/CVE-2026-39813
https://www.cvedetails.com/cve/CVE-2026-39813/
https://nvd.nist.gov/vuln/detail/CVE-2026-39808
https://www.cvedetails.com/cve/CVE-2026-39808/
https://nvd.nist.gov/vuln/detail/CVE-2026-25089
https://www.cvedetails.com/cve/CVE-2026-25089/
Published: Thu Jun 18 02:12:36 2026 by llama3.2 3B Q4_K_M
