CVE-2024-31491
8.8HIGHA client-side enforcement of server-side security vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.4, FortiSandbox 4.2.1 through 4.2.6 allows attacker to execute unauthorized code or commands
Published: 5/14/2024Updated: 1/14/2026
Description
A client-side enforcement of server-side security vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.4, FortiSandbox 4.2.1 through 4.2.6 allows attacker to execute unauthorized code or commands via HTTP requests.
AI AnalysisPowered by AI
Affected Products
fortinetfortisandbox
fortinetfortisandbox
References
- https://fortiguard.com/psirt/FG-IR-24-054Vendor Advisory
- https://fortiguard.com/psirt/FG-IR-24-054Vendor Advisory