Volerion logoVolerion
Volerion logoVolerion

Fortinet FortiSandbox Improper Isolation Vulnerability Allowing Sandboxing Scan Evasion

Vulnerability

A vulnerability allowing evasion of sandboxing scans has been identified in Fortinet FortiSandbox versions 5.0.0 through 5.0.1, 4.4.0 through 4.4.7, 4.2 all versions, and 4.0 all versions. This improper isolation vulnerability (CWE-653) may enable an unauthenticated attacker to bypass the sandboxing scan by using a crafted file.

Impact

Exploitation of this vulnerability could allow unauthorized evasion of file scans, potentially leading to undetected malicious activity.

Remediation

Users of Fortinet FortiSandbox 5.0 should upgrade to version 5.0.2 or above. Users of Fortinet FortiSandbox 4.4 should upgrade to version 4.4.8 or above. For FortiSandbox 4.2 and 4.0, users should migrate to a fixed release. Additionally, FortiSandbox 4.4 users can upgrade the Tracer Engine to version 04004.00477 or above as a workaround.

Added: Nov 18, 2025, 5:35 PM
Updated: Nov 18, 2025, 5:35 PM

Vulnerability Rating

Custom Algorithm
spread
2.6
impact
2.7
exploitability
7.0
remediation
7.7
relevance
1.0
threat
0.0
urgency
2.9
incentive
5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.