ThreatCluster

FortiSandbox SSRF Vulnerability Disclosed, Affects Internal Traffic Proxying

First seen 14 Jan 2026, 17:51 UTC CybersecuritynewsCyberpress 89% similarity 26

Article Content

Browse articles
ThreatCluster

Fortinet disclosed a Server-Side Request Forgery (SSRF) vulnerability in its FortiSandbox appliance on January 13, 2026. The vulnerability, tracked as CVE-2025-67685, allows authenticated attackers to craft HTTP requests that can proxy internal network traffic. Users are urged to update their systems to mitigate the risks associated with this flaw.

ThreatCluster AI

Community

Browse all →