VYPR
Get started
← All advisories
Low severity2.7NVD Advisory· Published Apr 14, 2026· Updated Apr 22, 2026

CVE-2026-27316

CVE-2026-27316

Description

A insufficiently protected credentials vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4 all versions, FortiSandbox PaaS 5.0.1 through 5.0.5 may allow an authenticathed administrator to read LDAP server credentials via client-side inspection.

Affected products

3
  • Fortinet/Fortisandbox
    cpe:2.3:a:fortinet:fortisandbox:*:*:*:*:*:*:*:*
    Range: >=4.4.0,<5.0.6
  • Fortinet/Fortisandbox Cloud2 versions
    cpe:2.3:a:fortinet:fortisandbox_cloud:5.0.4:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:fortinet:fortisandbox_cloud:5.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:fortinet:fortisandbox_cloud:5.0.5:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.