SECURITYTHE HACKER NEWS
Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week
Attackers are exploiting three security vulnerabilities in Fortinet FortiSandbox, including a path traversal flaw (CVE-2026-39813) with a CVSS score of 9.1. Threat intelligence firm Defused Cyber reported observing active exploitation of these flaws over the past 24 hours, with one vulnerability patched last week.
Mentioned
Related Signal
Adjacent reporting
- CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV
- CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
- NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE
- Microsoft Warns of Two Actively Exploited Defender Vulnerabilities
- Critical Fortinet FortiSandbox flaws now exploited in attacks