The Chonkerton

CVE-2026-25089: FortiSandbox unauthenticated command injection added to CISA KEV

tech

Hacker News reports that FortiSandbox, Fortinet's enterprise security sandbox product, has an unauthenticated command injection vulnerability—CVE-2026-25089. The flaw has been added to CISA's catalog of known exploited vulnerabilities, indicating it's being actively targeted in the wild.

Source: https://hellorecon.com/blog/cve-2026-25089

Listen to this story

Hear this and more stories in a personalized audio briefing.

Open The Chonkerton