FortiSandbox command injection in KEV
CVE‑2026‑25089 (unauthenticated command injection) is now in CISA’s Known Exploited Vulnerabilities catalog—prioritize patching FortiSandbox instances exposed to untrusted networks.
CVE-2026-25089: FortiSandbox unauthenticated command injection added to CISA KEV — Article URL: https://hellorecon.com/blog/cve-2026-25089 Comments URL: https://news.ycombinator.com/item?id=48940895 Points: 26 # Comments: 0






