Fortinet has released security patches addressing seven vulnerabilities across its product line, including a critical issue in FortiSandbox that could allow attackers to access Virtual Network Computing servers running inside sandbox environments.
The most notable flaw tracked as CVE-2026-XXXX impacts FortiSandbox and allows an unauthenticated attacker to reach VNC servers of virtual machines operating within the sandbox. This could enable screen capture, keyboard input injection, and data exfiltration from isolated analysis environments that organizations use for malware investigation. Additional patches cover FortiOS, FortiProxy, and FortiPAM with vulnerabilities ranging from information disclosure to privilege escalation.
Organizations using Fortinet products should prioritize updating FortiSandbox to the latest version, as the VNC exposure vulnerability could compromise the integrity of sandbox analysis results. The remaining patches address less critical issues but should be applied as part of regular maintenance cycles. No active exploitation has been reported for any of the seven vulnerabilities at this time.
HTMLEOF
