PT-2026-32679 · Fortinet · Fortisandbox+1

Published

2026-04-14

·

Updated

2026-04-14

·

CVE-2026-27316

CVSS v3.1

2.7

Low

AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
A insufficiently protected credentials vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4 all versions, FortiSandbox PaaS 5.0.1 through 5.0.5 may allow an authenticathed administrator to read LDAP server credentials via client-side inspection.

Fix

Insufficiently Protected Credentials

Weakness Enumeration

CWE-522

Related Identifiers

CVE-2026-27316

Affected Products

Fortisandbox
Fortisandbox Paas