Back

Critical RCE Vulnerabilities Discovered in Fortinet Products

Severity: High (Score: 72.8)

Sources: Securityaffairs.Co, Bleepingcomputer, Cybersecuritynews, Heise.De, fortiguard.fortinet.com

Summary

Fortinet has identified multiple critical vulnerabilities in its FortiSandbox and FortiAuthenticator products, which could allow unauthenticated attackers to execute arbitrary code remotely. The vulnerabilities are tracked as CVE-2026-44277 and CVE-2026-26083, both published on May 12, 2026. FortiAuthenticator's flaw stems from improper access control, while FortiSandbox suffers from a missing authorization issue. These vulnerabilities affect various versions of FortiAuthenticator and FortiSandbox, with a CVSS score of 9.1 indicating their critical nature. Although no active exploitation has been reported, Fortinet's products have been frequently targeted in the past, raising concerns about potential future attacks. Administrators are urged to apply patches immediately to mitigate risks. Fortinet's advisory emphasizes the importance of maintaining updated systems to prevent exploitation. Key Points: • Two critical vulnerabilities in Fortinet products could allow remote code execution. • CVE-2026-44277 and CVE-2026-26083 were published on May 12, 2026, with a CVSS score of 9.1. • Fortinet recommends immediate patching of affected systems to prevent exploitation.

Key Entities

  • Data Breach (attack_type)
  • DDoS (attack_type)
  • Zero-day Exploit (attack_type)
  • Fortinet (company)
  • CVE-2025-53844 (cve)
  • CVE-2026-21643 (cve)
  • CVE-2026-26083 (cve)
  • CVE-2026-35616 (cve)
  • CVE-2026-44277 (cve)
  • CWE-200 - Exposure of Sensitive Information (cwe)
  • CWE-269 - Improper Privilege Management (cwe)
  • CWE-287 - Improper Authentication (cwe)
  • Cwe-787 - Out-of-bounds Write (cwe)
  • CWE-862 - Missing Authorization (cwe)
  • T1003 - OS Credential Dumping (mitre_attack)
  • T1190 - Exploit Public-Facing Application (mitre_attack)
  • FortiAP (platform)
  • FortiAuthenticator (platform)
  • FortiAuthenticator Cloud (platform)
  • FortiClient EMS (platform)
  • FortiExtender (platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed