Fortinet FortiSandbox Incorrect Authorization Vulnerability Allowing Elevated CLI Command Execution

Vulnerability

A vulnerability allowing incorrect authorization has been identified in Fortinet FortiSandbox versions 4.4.0 to 4.4.6. This vulnerability may enable a low-privileged administrator to execute elevated command-line interface (CLI) commands through the graphical user interface (GUI) console menu.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of elevated CLI commands, potentially allowing a low-privileged administrator to perform actions or access resources that should be restricted.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Fortinet FortiSandbox Incorrect Authorization Vulnerability Allowing Elevated CLI Command Execution

Vulnerability

Impact

Affected Products

Fortinet FortiSandbox

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating