VYPR
Unrated severityNVD Advisory· Published May 14, 2024· Updated Jan 14, 2026

CVE-2024-31491

CVE-2024-31491

Description

A client-side enforcement of server-side security vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.4, FortiSandbox 4.2.1 through 4.2.6 allows attacker to execute unauthorized code or commands via HTTP requests.

Affected products

2
  • cpe:2.3:a:fortinet:fortisandbox:4.4.4:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:fortinet:fortisandbox:4.4.4:*:*:*:*:*:*:*range: 4.4.0
    • (no CPE)range: 4.2.1-4.2.6, 4.4.0-4.4.4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.