CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-26083

A missing authorization vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox Cloud 5.0.2 through 5.0.5, FortiSandbox PaaS 23.4 all versions, FortiSandbox PaaS 23.3 all versions, FortiSandbox PaaS 23.1 all versions, FortiSandbox PaaS 22.2 all versions, FortiSandbox PaaS 22.1 all versions, FortiSandbox PaaS 21.4 all versions, FortiSandbox PaaS 21.3 all versions, FortiSandbox PaaS 5.0.0 through 5.0.1, FortiSandbox PaaS 4.4.5 through 4.4.8 may allow an unauthenticated attacker to execute unauthorized code or commands via HTTP requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.3%

CVSS Severity

CVSS v3 Score 9.8

References

https://fortiguard.fortinet.com/psirt/FG-IR-26-136

Products affected by CVE-2026-26083

Fortinet » Fortisandbox » Version: 4.4.0

cpe:2.3:a:fortinet:fortisandbox:4.4.0
Fortinet » Fortisandbox » Version: 4.4.1

cpe:2.3:a:fortinet:fortisandbox:4.4.1
Fortinet » Fortisandbox » Version: 4.4.2

cpe:2.3:a:fortinet:fortisandbox:4.4.2
Fortinet » Fortisandbox » Version: 4.4.3

cpe:2.3:a:fortinet:fortisandbox:4.4.3
Fortinet » Fortisandbox » Version: 4.4.4

cpe:2.3:a:fortinet:fortisandbox:4.4.4
Fortinet » Fortisandbox » Version: 4.4.5

cpe:2.3:a:fortinet:fortisandbox:4.4.5
Fortinet » Fortisandbox » Version: 4.4.6

cpe:2.3:a:fortinet:fortisandbox:4.4.6
Fortinet » Fortisandbox » Version: 4.4.7

cpe:2.3:a:fortinet:fortisandbox:4.4.7
Fortinet » Fortisandbox » Version: 4.4.8

cpe:2.3:a:fortinet:fortisandbox:4.4.8
Fortinet » Fortisandbox » Version: 5.0.0

cpe:2.3:a:fortinet:fortisandbox:5.0.0
Fortinet » Fortisandbox » Version: 5.0.1

cpe:2.3:a:fortinet:fortisandbox:5.0.1
Fortinet » Fortisandbox Cloud » Version: Any

cpe:2.3:a:fortinet:fortisandbox_cloud:*
Fortinet » Fortisandbox Cloud » Version: 24.1.4436

cpe:2.3:a:fortinet:fortisandbox_cloud:24.1.4436
Fortinet » Fortisandbox Cloud » Version: 5.0.2

cpe:2.3:a:fortinet:fortisandbox_cloud:5.0.2
Fortinet » Fortisandbox Cloud » Version: 5.0.4

cpe:2.3:a:fortinet:fortisandbox_cloud:5.0.4
Fortinet » Fortisandbox Cloud » Version: 5.0.5

cpe:2.3:a:fortinet:fortisandbox_cloud:5.0.5
Fortinet » Fortisandbox Paas » Version: 21.3.4055

cpe:2.3:a:fortinet:fortisandbox_paas:21.3.4055
Fortinet » Fortisandbox Paas » Version: 21.4.4072

cpe:2.3:a:fortinet:fortisandbox_paas:21.4.4072
Fortinet » Fortisandbox Paas » Version: 22.1.4113

cpe:2.3:a:fortinet:fortisandbox_paas:22.1.4113
Fortinet » Fortisandbox Paas » Version: 22.2.4134

cpe:2.3:a:fortinet:fortisandbox_paas:22.2.4134
Fortinet » Fortisandbox Paas » Version: 22.2.4151

cpe:2.3:a:fortinet:fortisandbox_paas:22.2.4151
Fortinet » Fortisandbox Paas » Version: 23.1.4245

cpe:2.3:a:fortinet:fortisandbox_paas:23.1.4245
Fortinet » Fortisandbox Paas » Version: 23.3.4260

cpe:2.3:a:fortinet:fortisandbox_paas:23.3.4260
Fortinet » Fortisandbox Paas » Version: 23.3.4329

cpe:2.3:a:fortinet:fortisandbox_paas:23.3.4329
Fortinet » Fortisandbox Paas » Version: 23.4.4350

cpe:2.3:a:fortinet:fortisandbox_paas:23.4.4350
Fortinet » Fortisandbox Paas » Version: 23.4.4367

cpe:2.3:a:fortinet:fortisandbox_paas:23.4.4367
Fortinet » Fortisandbox Paas » Version: 23.4.4374

cpe:2.3:a:fortinet:fortisandbox_paas:23.4.4374
Fortinet » Fortisandbox Paas » Version: 4.4.5

cpe:2.3:a:fortinet:fortisandbox_paas:4.4.5
Fortinet » Fortisandbox Paas » Version: 4.4.6

cpe:2.3:a:fortinet:fortisandbox_paas:4.4.6
Fortinet » Fortisandbox Paas » Version: 4.4.7

cpe:2.3:a:fortinet:fortisandbox_paas:4.4.7
Fortinet » Fortisandbox Paas » Version: 4.4.8

cpe:2.3:a:fortinet:fortisandbox_paas:4.4.8
Fortinet » Fortisandbox Paas » Version: 5.0.0

cpe:2.3:a:fortinet:fortisandbox_paas:5.0.0
Fortinet » Fortisandbox Paas » Version: 5.0.1

cpe:2.3:a:fortinet:fortisandbox_paas:5.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-26083

Products

Pricing

Contact Us