CVE-2026-25691

Published: Apr 14, 2026Modified: Apr 22, 2026

6.7

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H

Exploitability: 1.2 / Impact: 5.5

Source: psirt@fortinet.com (Secondary)

Description

A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox 4.2 all versions, FortiSandbox Cloud 5.0.4, FortiSandbox PaaS 5.0.4 may allow a privileged attacker with super-admin profile and CLI access to delete an arbitrary directory via HTTP crafted requests.

Affected (3)

Products: Fortinet: Fortisandbox, Fortisandbox Cloud

2 products

Fortisandbox Cloud

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Fortinet Fortisandbox	From 4.2.0 to 4.4.9
Fortinet Fortisandbox	From 5.0.0 to 5.0.6
Fortinet Fortisandbox Cloud	Version 5.0.4

Related CWEs

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (1)

https://fortiguard.fortinet.com/psirt/FG-IR-26-115

Source: psirt@fortinet.com

Vendor Advisory

Timeline

No history available yet.