CVE-2026-27316

Name of the Vulnerable Software and Affected Versions FortiSandbox versions 5.0.0 through 5.0.5 FortiSandbox version 4.4 FortiSandbox PaaS versions 5.0.1 through 5.0.5

Description An issue involving insufficiently protected credentials and the use of files and directories accessible to external parties may allow an authenticated administrator to read LDAP server credentials via client-side inspection. This could enable a remote attacker to gain unauthorized access to protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.