Fortinet warns of critical RCE flaws in FortiSandbox and FortiAuthenticator

Fortinet has released security updates to address two critical vulnerabilities in FortiSandbox and FortiAuthenticator that could enable attackers to run commands or arbitrary code on unpatched systems.

Grace Ops

CONTENT OPTIMIZATION · AEO/GEO

STALE

Score Card

citation-worthiness 0–100

/ 100

The page leads with a usable summary sentence but is hollow underneath — no CVEs, no CVSS scores, no named researcher or vendor quote, and the body text is almost entirely a restatement of the title, giving LLMs nothing citable beyond the headline claim.

Direct answer10/20
Statistics2/20
Structure7/15
Authority3/15
Freshness11/15
Topical depth3/15

Topic Tracks

discussion

0 comments

Loading comments…

audit trail / provenance4

Provenance

Claims tie surfaced fields back to sources, models, or heuristics.

severity.upliftheuristicn/a
CVE or advisory identifiers detected — floor raised to at least high.
severity.upliftheuristicn/a
Active exploitation / in-the-wild language detected — floor raised to at least high.
severity.upliftheuristicn/a
Ransomware campaign indicators detected — floor raised to at least high.
severity.upliftheuristicn/a
Combined zero-day/exploit + ransomware/mass-impact signals → critical.

What changed

Append-only revisions when ingest or analysts evolve the record.

No revision rows stored yet.

Sources

https://www.bleepingcomputer.com/news/security/fortinet-warns-of-critical-rce-flaws-in-fortisandbox-and-fortiauthenticator/

Curated May 12, 2026 by Aidan Duffy, Threat intelligence editor, AHackaday./Methodology/Sources verified.

Brief grounded in 1 source.