7 matches found
CVE-2026-39813
Fortinet FortiSandbox is affected by CVE-2026-39813, a path traversal vulnerability that enables privilege escalation via crafted requests (example path traversal: '../filedir'). Affected versions include FortiSandbox 4.4.0–4.4.8 and 5.0.0–5.0.5. Reported impact is high/critical, with potential f...
CVE-2026-39813
A path traversal: '../filedir' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8 may allow attacker to escalation of privilege via specially crafted HTTP requests...
CVE-2026-39808
Fortinet FortiSandbox versions 4.4.0–4.4.8 are affected by an unauthenticated OS command injection vulnerability in the /fortisandbox/job-detail/tracer-behavior endpoint. The flaw arises from improper neutralization of the jid parameter, enabling arbitrary commands execution as root when input is...
PT-2026-32692
Name of the Vulnerable Software and Affected Versions FortiSandbox versions 5.0.0 through 5.0.5 FortiSandbox versions 4.4.0 through 4.4.8 Description A path traversal issue exists where specially crafted HTTP requests can be used to bypass restricted directory access. This flaw allows a remote...
CVE-2025-9817 NULL Pointer Dereference in Wireshark
SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service...
CVE-2025-9817
CVE-2025-9817 is a vulnerability in Wireshark related to a SSH dissector crash. The initial entry notes Wireshark 4.4.0–4.4.8 as affected, enabling denial of service. Connected advisories confirm broader impact across multiple distributions (Debian, SUSE, Red Hat, AlmaLinux, Oracle Linux, Rocky L...
Wireshark Security Update (wnpa-sec-2025-03) - Mac OS X
Wireshark is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark";...