CVE-2026-39808
Coverage of CVE-2026-39808 in the Nexus archive.
- Three critical Fortinet sandbox bugs splattered by unknown attackers
Three critical vulnerabilities in Fortinet's FortiSandbox are being actively exploited by unknown attackers. Fortinet has patched two of the flaws (CVE-2026-39813 and CVE-2026-39808) in April and a third (CVE-2026-25089) last week, all rated 9.1 on the CVSS scale. Threat intelligence firm Defused reported ongoing exploitation attempts, including unpatched vulnerabilities allowing remote code execution and authentication bypass.
- Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week
Attackers are exploiting three security vulnerabilities in Fortinet FortiSandbox, including a path traversal flaw (CVE-2026-39813) with a CVSS score of 9.1. Threat intelligence firm Defused Cyber reported observing active exploitation of these flaws over the past 24 hours, with one vulnerability patched last week.