Unrated severityNVD Advisory· Published May 14, 2024· Updated Jan 14, 2026
CVE-2024-31491
CVE-2024-31491
Description
A client-side enforcement of server-side security vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.4, FortiSandbox 4.2.1 through 4.2.6 allows attacker to execute unauthorized code or commands via HTTP requests.
Affected products
2cpe:2.3:a:fortinet:fortisandbox:4.4.4:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:fortinet:fortisandbox:4.4.4:*:*:*:*:*:*:*range: 4.4.0
- (no CPE)range: 4.2.1-4.2.6, 4.4.0-4.4.4
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.