Back

Multiple Command Injection Vulnerabilities in Fortinet Products

Severity: High (Score: 67.5)

Sources: www.fortiguard.com, fortiguard.fortinet.com

Summary

Fortinet has disclosed two critical vulnerabilities affecting its FortiAP and FortiMail products. The first, an OS Command Injection vulnerability in FortiAP, allows authenticated attackers to execute unauthorized commands via crafted CLI requests. The second, an SQL Injection vulnerability in FortiMail, similarly permits execution of unauthorized commands through specially crafted HTTP or HTTPS requests. Both vulnerabilities are classified under CWE-78 and CWE-89 respectively. They potentially allow privileged attackers to compromise systems if exploited. The vulnerabilities were initially published on May 12, 2026, and are currently under investigation. Users are advised to monitor for updates and apply patches as they become available. Key Points: • Fortinet disclosed OS Command Injection and SQL Injection vulnerabilities on May 12, 2026. • Authenticated attackers can exploit these vulnerabilities to execute unauthorized commands. • Affected products include FortiAP and FortiMail, with potential for significant system compromise.

Key Entities

  • Command Injection (attack_type)
  • Sql Injection (attack_type)
  • OS Command Injection (vulnerability)
  • CWE-78 - OS Command Injection (cwe)
  • Cwe-89 - SQL Injection (cwe)
  • T1059 - Command and Scripting Interpreter (mitre_attack)
  • T1190 - Exploit Public-Facing Application (mitre_attack)
  • FortiAP (platform)
  • FortiAP-U (platform)
  • FortiAP-W2 (platform)
  • FortiMail (platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed