Vulnerability Details CVE-2026-39813
A path traversal: '../filedir' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8 may allow attacker to escalation of privilege via specially crafted HTTP requests.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.167
EPSS Ranking 96.7%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2026-39813
-
cpe:2.3:a:fortinet:fortisandbox:4.4.0
-
cpe:2.3:a:fortinet:fortisandbox:4.4.1
-
cpe:2.3:a:fortinet:fortisandbox:4.4.2
-
cpe:2.3:a:fortinet:fortisandbox:4.4.3
-
cpe:2.3:a:fortinet:fortisandbox:4.4.4
-
cpe:2.3:a:fortinet:fortisandbox:4.4.5
-
cpe:2.3:a:fortinet:fortisandbox:4.4.6
-
cpe:2.3:a:fortinet:fortisandbox:4.4.7
-
cpe:2.3:a:fortinet:fortisandbox:4.4.8
-
cpe:2.3:a:fortinet:fortisandbox:5.0.0
-
cpe:2.3:a:fortinet:fortisandbox:5.0.1
-
cpe:2.3:a:fortinet:fortisandbox:5.0.2
-
cpe:2.3:a:fortinet:fortisandbox:5.0.3
-
cpe:2.3:a:fortinet:fortisandbox:5.0.4
-
cpe:2.3:a:fortinet:fortisandbox:5.0.5