Security Advisory

CVE-2025-52436

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-10 15:39:11

Last updated 2026-02-26 15:04:11

Assigner fortinet

State PUBLISHED

Description

An Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability [CWE-79] vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.7, FortiSandbox 4.2 all versions, FortiSandbox 4.0 all versions may allow an unauthenticated attacker to execute commands via crafted requests.

← Browse all CVEs View on cve.org ↗