Lucene search
+L

7 matches found

CVE
CVE
added 2026/04/14 3:38 p.m.58 views

CVE-2026-39813

Fortinet FortiSandbox is affected by CVE-2026-39813, a path traversal vulnerability that enables privilege escalation via crafted requests (example path traversal: '../filedir'). Affected versions include FortiSandbox 4.4.0–4.4.8 and 5.0.0–5.0.5. Reported impact is high/critical, with potential f...

9.8CVSS5.8AI score0.16739EPSS
In wildExploits2References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/14 3:38 p.m.7 views

CVE-2026-39813

A path traversal: '../filedir' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8 may allow attacker to escalation of privilege via specially crafted HTTP requests...

9.8CVSS5.8AI score0.16739EPSS
Exploits2References2Affected Software2
CVE
CVE
added 2026/04/14 3:38 p.m.105 views

CVE-2026-39808

Fortinet FortiSandbox versions 4.4.0–4.4.8 are affected by an unauthenticated OS command injection vulnerability in the /fortisandbox/job-detail/tracer-behavior endpoint. The flaw arises from improper neutralization of the jid parameter, enabling arbitrary commands execution as root when input is...

9.8CVSS6AI score0.84158EPSS
In wildExploits7References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.15 views

PT-2026-32692

Name of the Vulnerable Software and Affected Versions FortiSandbox versions 5.0.0 through 5.0.5 FortiSandbox versions 4.4.0 through 4.4.8 Description A path traversal issue exists where specially crafted HTTP requests can be used to bypass restricted directory access. This flaw allows a remote...

10CVSS8.7AI score0.16739EPSS
Exploits2References63
Vulnrichment
Vulnrichment
added 2025/09/03 7:38 a.m.2 views

CVE-2025-9817 NULL Pointer Dereference in Wireshark

SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service...

7.8CVSS6.3AI score0.00194EPSS
Exploits1References2
CVE
CVE
added 2025/09/03 7:38 a.m.52 views

CVE-2025-9817

CVE-2025-9817 is a vulnerability in Wireshark related to a SSH dissector crash. The initial entry notes Wireshark 4.4.0–4.4.8 as affected, enabling denial of service. Connected advisories confirm broader impact across multiple distributions (Debian, SUSE, Red Hat, AlmaLinux, Oracle Linux, Rocky L...

7.8CVSS6.3AI score0.00194EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVAS
added 2025/09/01 12:0 a.m.5 views

Wireshark Security Update (wnpa-sec-2025-03) - Mac OS X

Wireshark is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark";...

7.8CVSS6.6AI score0.00194EPSS
Exploits1References1
Rows per page
Query Builder