{"vulnerability": "CVE-2026-39808", "sightings": [{"uuid": "73760ff5-29c9-46da-ab6d-b8b8972b8fb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "published-proof-of-concept", "source": "https://t.me/realcodeb0ss/412", "content": "https://nvd.nist.gov/vuln/detail/CVE-2026-39808\n\n\nFofa : title=\"FortiSandbox\"\n\n\nShodan : http.title:\"FortiSandbox\"\n\n\nEnjoy;", "creation_timestamp": "2026-04-22T13:44:01.000000Z"}, {"uuid": "e2f6c578-ddad-470c-abfa-838e3089f091", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/81219", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a FortiSandbox-RCE-Exploit-CVE-2026-39808\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a ynsmroztas\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-04-21 22:32:05\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nFortiSandbox RCE Scanner \u2014 CVE-2026-39808\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-04-21T23:00:04.000000Z"}, {"uuid": "5477f606-ce28-47bb-a70b-74a9509bd33f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/80817", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-39808\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a 0xBlackash\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-04-18 11:54:11\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-39808\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-04-18T12:00:04.000000Z"}, {"uuid": "43b07570-5ffe-4b85-824d-d47a3dc714e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://t.me/bdufstecru/3085", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0430 JRPC \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f \u0438 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0443\u0433\u0440\u043e\u0437 FortiSandbox \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u0435\u043c \u043c\u0435\u0440 \u043f\u043e \u043d\u0435\u0439\u0442\u0440\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0445 \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u043e\u0432 \u00ab|\u00bb \u043f\u0440\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440\u0430 jid. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043f\u0443\u0442\u0435\u043c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e GET-\u0437\u0430\u043f\u0440\u043e\u0441\u0430\n\nBDU:2026-05445\nCVE-2026-39808\n\n\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0438\u0437 \u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432. \u0412 \u0441\u0432\u044f\u0437\u0438 \u0441\u043e \u0441\u043b\u043e\u0436\u0438\u0432\u0448\u0435\u0439\u0441\u044f \u043e\u0431\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u0438 \u0432\u0432\u0435\u0434\u0435\u043d\u043d\u044b\u043c\u0438 \u0441\u0430\u043d\u043a\u0446\u0438\u044f\u043c\u0438 \u043f\u0440\u043e\u0442\u0438\u0432 \u0420\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u043e\u0439 \u0424\u0435\u0434\u0435\u0440\u0430\u0446\u0438\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0441\u043b\u0435 \u043e\u0446\u0435\u043d\u043a\u0438 \u0432\u0441\u0435\u0445 \u0441\u043e\u043f\u0443\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0445 \u0440\u0438\u0441\u043a\u043e\u0432.\n\n\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u044d\u043a\u0440\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0443\u0440\u043e\u0432\u043d\u044f \u0432\u0435\u0431-\u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 (WAF) \u0434\u043b\u044f \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u0442\u0440\u0430\u0444\u0438\u043a\u0430;\n- \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u043c\u0443 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c\u0443 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044e, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0441\u0445\u0435\u043c\u0443 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043f\u043e \u00ab\u0431\u0435\u043b\u044b\u043c \u0441\u043f\u0438\u0441\u043a\u0430\u043c\u00bb;\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 SIEM-\u0441\u0438\u0441\u0442\u0435\u043c \u0434\u043b\u044f \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u0441\u043e\u0431\u044b\u0442\u0438\u0439, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0445 \u0441 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u043e\u0439 GET-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432;\n- \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0438\u0437 \u0432\u043d\u0435\u0448\u043d\u0438\u0445 \u0441\u0435\u0442\u0435\u0439 (\u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442).\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://fortiguard.fortinet.com/psirt/FG-IR-26-100", "creation_timestamp": "2026-04-17T12:57:35.000000Z"}, {"uuid": "28e899d5-9532-472d-b998-0e9ec8bf8a5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/80416", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-39808\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a samu-delucas\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a None\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-04-15 14:47:25\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nPoC for Unauthenticated RCE in FortiSandbox via CVE-2026-39808\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-04-15T15:00:05.000000Z"}, {"uuid": "9117dcab-5493-4445-b2fd-2e5d0e7fec1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mjhsq63gzz2f", "content": "", "creation_timestamp": "2026-04-14T16:34:29.076527Z"}, {"uuid": "8cd9026e-824a-4e14-8e8b-a346d40ddb42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mjhtmyvvu22t", "content": "", "creation_timestamp": "2026-04-14T16:50:41.478935Z"}, {"uuid": "9d7c6c24-247f-4e16-8184-cf3357af5b38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/rxerium.com/post/3mjicngifvk2s", "content": "", "creation_timestamp": "2026-04-14T21:19:22.237324Z"}, {"uuid": "1e6c6191-2855-4cca-a7fa-49187ba563fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/rxerium.com/post/3mjicnkkupc2s", "content": "", "creation_timestamp": "2026-04-14T21:19:22.842219Z"}, {"uuid": "e0dc8a32-3854-4b6b-a78c-bd85f21b47a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mjjcyh2w2c2s", "content": "", "creation_timestamp": "2026-04-15T06:58:06.716231Z"}, {"uuid": "97d26b1a-0968-480b-bf8b-1ae28cb75783", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://www.acn.gov.it/portale/w/vulnerabilita-in-prodotti-fortinet-9", "content": "", "creation_timestamp": "2026-04-15T01:45:10.000000Z"}, {"uuid": "59fb5e19-f546-4a45-b50c-d1709a96df55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mjjqtffxdf2a", "content": "", "creation_timestamp": "2026-04-15T11:05:48.999519Z"}, {"uuid": "41db69bf-8b86-48d3-838c-424e33ba4259", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0121", "content": "", "creation_timestamp": "2026-04-15T05:23:16.000000Z"}, {"uuid": "08a5317d-7217-45ea-8c2f-64f3b40cbb61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-remote-code-execution-privilege-escalation-fortinet-fortisandbox-patch", "content": "", "creation_timestamp": "2026-04-15T07:51:27.000000Z"}, {"uuid": "458af224-3523-4a15-8a49-7db39dbc9838", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/helpnetsecurity.com/post/3mjmknh5pi22f", "content": "", "creation_timestamp": "2026-04-16T13:53:10.145804Z"}, {"uuid": "e28e0598-01ab-4096-8beb-e699db3ae42a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mjmw4zfxor22", "content": "", "creation_timestamp": "2026-04-16T17:19:41.408817Z"}, {"uuid": "c2a137f7-9059-4742-868a-7abdd41b66d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mjn5y4n7jy2y", "content": "", "creation_timestamp": "2026-04-16T19:39:10.525882Z"}, {"uuid": "18532d67-6e80-4d5e-892e-b964c1c1f254", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116416313692288436", "content": "", "creation_timestamp": "2026-04-16T20:39:37.691895Z"}, {"uuid": "0a4e53a4-5516-402b-95ab-7c4e8a8b6211", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3mjnvktzebt2e", "content": "", "creation_timestamp": "2026-04-17T02:41:09.968598Z"}, {"uuid": "c077a8a3-468d-410e-9235-6dfb2bef0e36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mjp36vgglt2s", "content": "", "creation_timestamp": "2026-04-17T13:54:31.433544Z"}, {"uuid": "3e4ae610-3133-4ed0-ae71-f56ff7593982", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mjqvatjqnu2s", "content": "", "creation_timestamp": "2026-04-18T07:13:33.149091Z"}, {"uuid": "79aff9e5-5560-4bc5-a382-6f9a0aec8d46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mjsgmsuuuk2k", "content": "", "creation_timestamp": "2026-04-18T21:57:08.625120Z"}, {"uuid": "06703246-0851-4488-b410-663f3532dd27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-39808", "type": "published-proof-of-concept", "source": "https://github.com/samu-delucas/CVE-2026-39808", "content": "", "creation_timestamp": "2026-04-15T04:00:00.000000Z"}, {"uuid": "6441a0c8-591c-4d17-9b32-aefea983e969", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mjugyw5buz2b", "content": "", "creation_timestamp": "2026-04-19T17:09:14.993520Z"}, {"uuid": "50f781ea-7ec3-4ff5-8b2e-6f9d0fef1ecc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mjvw6tbefg25", "content": "", "creation_timestamp": "2026-04-20T07:13:39.367231Z"}, {"uuid": "a06f6a20-4d4e-4a63-96fc-f6efb835ef43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/termsofsurrender.bsky.social/post/3mjwd3zm4bt2m", "content": "", "creation_timestamp": "2026-04-20T11:04:42.602126Z"}, {"uuid": "3999620c-d59c-4d6d-89f2-3f28d1cc63de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3mjxrm6yvsf2q", "content": "", "creation_timestamp": "2026-04-21T00:56:57.795996Z"}, {"uuid": "13ae3e76-65c5-4fae-8f99-3c757d807cc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://www.cert.se/2026/04/patchtisdag-april-2026-samlad-information-om-manadens-sakerhetsuppdateringar.html", "content": "", "creation_timestamp": "2026-04-14T06:20:00.000000Z"}, {"uuid": "e73684ed-0386-4f39-929e-33e66c0de543", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-39808.yaml", "content": "", "creation_timestamp": "2026-04-22T07:19:32.000000Z"}, {"uuid": "24f20938-e098-4653-9c2b-aa68a76aa9ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mk6vwum6ns2g", "content": "", "creation_timestamp": "2026-04-23T21:03:18.202498Z"}, {"uuid": "d4ff56ee-111a-4779-93fb-074a5a309bf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://www.cert.se/2026/04/cert-se-veckobrev-v17.html", "content": "", "creation_timestamp": "2026-04-24T06:30:00.000000Z"}, {"uuid": "1f38e863-0936-492c-be37-8a602fd5b7c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "published-proof-of-concept", "source": "Telegram/56SNjB68nyULYTdkaeIILQI4ytkQLoACBGmTDoXIf258Id4", "content": "", "creation_timestamp": "2026-04-18T11:00:12.000000Z"}, {"uuid": "0250e11d-beb5-4c3a-9d09-68de657ecaa3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "Telegram/4v-OwtEbw2k7C9XNjCs9sYdvWLQASGI7-ImwzCKuO3D_XeQ", "content": "", "creation_timestamp": "2026-04-14T17:28:30.000000Z"}, {"uuid": "183d44c3-2906-4ebf-9273-132596fedd14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "published-proof-of-concept", "source": "Telegram/4bKDS933-0b55qM7WdBrOYyTgLQnD9_rI0Z1t-1c37mSxrw", "content": "", "creation_timestamp": "2026-04-22T03:00:07.000000Z"}, {"uuid": "007c5532-332f-4c7c-90b1-48d2699a6f38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnhll34qxw2i", "content": "\ud83d\udccc CVE-2026-39808 - A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.... https://www.cyberhub.blog/cves/CVE-2026-39808", "creation_timestamp": "2026-06-04T12:07:08.301488Z"}, {"uuid": "ec786780-f63d-4572-9516-86848fe517dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mofkwddp4r2f", "content": "Active attacks target critical Fortinet FortiSandbox flaws, including CVE-2026-39813, CVE-2026-39808, and CVE-2026-25089, enabling privilege escalation and RCE without user interaction. #Fortinet #FortiSandbox #CVE2026", "creation_timestamp": "2026-06-16T10:15:26.546182Z"}, {"uuid": "c086c585-08d3-4d6c-a6b2-929fa1c497b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mofmyv3i652j", "content": "Bad actors exploited FortiSandbox vulnerabilities CVE-2026-39813, CVE-2026-39808, and CVE-2026-25089 within 24 hours, enabling unauthenticated path traversal and command injection.\n", "creation_timestamp": "2026-06-16T10:52:37.728643Z"}, {"uuid": "15318dec-eb7b-43c1-b88a-64bb4d394143", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-39808", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mofqjs7qtz2a", "content": "\ud83d\udcf0 Fortinet FortiSandbox Dihantam Eksploitasi Massal Celah Keamanan Kritis\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/06/16/celah-kritis-fortinet-fortisandbox-dieksploitasi/\n\n#cisa #cve-2026-25089 #cve-2026-39808 #cve-2026-39813 #fortinet #fortisandbox #hacker #jaringan #keaman", "creation_timestamp": "2026-06-16T11:55:45.957735Z"}, {"uuid": "2dc6ed1b-f099-41b6-9119-9c695dc65345", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://thehackernews.com/2026/06/attackers-exploit-three-fortinet.html", "content": "Bad actors are exploiting multiple security vulnerabilities in Fortinet FortiSandbox, according to threat intelligence firm Defused Cyber.\n\nIn a post shared on X, the company said it has observed exploitation of CVE-2026-39813, CVE-2026-39808, and CVE-2026-25089 over the past 24 hours.\n\nCVE-2026-39813 (CVSS score: 9.1) refers to a path traversal vulnerability in FortiSandbox JRPC API that could", "creation_timestamp": "2026-06-16T08:30:41.000000Z"}, {"uuid": "7ff2f806-223f-4830-a995-67eab7a17ea4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mog4sy37d22h", "content": "FortiSandbox\u306e\u8106\u5f31\u6027\u3092\u60aa\u7528\u3059\u308b\u653b\u6483\u8005\n\n\u653b\u6483\u8005\u304cFortiSandbox\u306e3\u3064\u306e\u8106\u5f31\u6027\uff08CVE-2026-39813\u3001CVE-2026-39808\u3001CVE-2026-25089\uff09\u3092\u60aa\u7528\u3057\u3066\u3044\u308b\u3053\u3068\u304c\u78ba\u8a8d\u3055\u308c\u307e\u3057\u305f\u3002FortiSandbox\u306f\u3001\u4ed6\u306eFortinet\u88fd\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u88fd\u54c1\u304c\u30d6\u30ed\u30c3\u30af\u5224\u5b9a\u306e\u5b9f\u65bd\u3084\u81ea\u52d5\u5bfe\u5fdc\u306e\u30c8\u30ea\u30ac\u30fc\u3068\u3057\u3066\u4f9d\u5b58\u3059\u308b\u8105\u5a01\u8a55\u6c7a", "creation_timestamp": "2026-06-16T15:35:38.962685Z"}, {"uuid": "a5fbb306-3372-4563-856e-f84914c14a47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mog72ep6fe2r", "content": "~Cybergcca~\nCisco Catalyst SD-WAN Manager and multiple Fortinet products have actively exploited vulnerabilities.\n-\nIOCs: CVE-2026-20262, CVE-2026-39813, CVE-2026-39808\n-\n#Cisco #Fortinet #ThreatIntel", "creation_timestamp": "2026-06-16T16:15:34.765358Z"}, {"uuid": "161d0dd5-2cde-428e-9ea6-b5197617b63d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mogbsgybam2z", "content": "Attackers are exploiting three vulnerabilities in Fortinet FortiSandbox: CVE-2026-39813 and CVE-2026-39808, both with a CVSS score of 9.1, involve path traversal and command injection, respectively, allowing unauthenticated access. Both were patched in April 2026.", "creation_timestamp": "2026-06-16T17:04:50.586298Z"}, {"uuid": "806e2ab1-14a5-4551-bc3a-763906621344", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/fortinet-security-advisory-av26-351", "content": "", "creation_timestamp": "2026-06-16T06:41:52.000000Z"}, {"uuid": "d9d76080-5549-4e7d-8878-ebc22f661309", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-39808", "type": "seen", "source": "https://bsky.app/profile/malwareobserver.bsky.social/post/3moh43dyiqk2t", "content": "\u2694\ufe0f ATTACKS Attackers are exploiting FortiSandbox vulnerabilities \u2014 Help Net Security\nhttps://www.helpnetsecurity.com/2026/06/16/fortisandbox-vulnerabilities-cve-2026-39813-cve-2026-39808-cve-2026-25089/ #InfoSec #CyberSecurity", "creation_timestamp": "2026-06-17T00:55:06.439358Z"}, {"uuid": "6a14284e-705f-411d-8594-b606a2606b02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/iberianm.bsky.social/post/3mohggp6udq2t", "content": "Fortinet FortiSandbox: attackers are exploiting CVE-2026-39813, CVE-2026-39808, and CVE-2026-25089; patch CVE-2026-39813 now and review for active JRPC/path traversal attemp\u2026 #Cybersecurity #Vulnerability #CloudSecurity\n\nSource: https://thehackernews.com/2026/06/attackers-exploit-three-fortinet.html", "creation_timestamp": "2026-06-17T04:00:25.184087Z"}, {"uuid": "13d237fc-8d11-4048-975e-3ab2395fa784", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mohquqzh6a2d", "content": "\u6700\u8fd1\u4fee\u6b63\u3055\u308c\u305fFortinet FortiSandbox\u306e\u8106\u5f31\u60273\u4ef6\u3001\u30cf\u30c3\u30ab\u30fc\u306e\u6a19\u7684\u306b\n\n\u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8\u30a4\u30f3\u30c6\u30ea\u30b8\u30a7\u30f3\u30b9\u4f01\u696dDefused\u306b\u3088\u308b\u3068\u3001\u6700\u8fd1\u30d1\u30c3\u30c1\u304c\u9069\u7528\u3055\u308c\u305fFortinet FortiSandbox\u306e\u8106\u5f31\u60273\u4ef6\u304c\u3001\u5b9f\u969b\u306e\u653b\u6483\u3067\u6a19\u7684\u306b\u3055\u308c\u3066\u3044\u307e\u3059\u3002 Defused\u306e\u30cf\u30cb\u30fc\u30dd\u30c3\u30c8\u3067\u306f\u3001CVE-2026-39808\u3001CVE-2026-39813\u3001CVE-2026-25089\u306e\u60aa\u7528\u3092\u8a66\u307f\u308b\u653b\u6483\u304c\u89b3\u6e2c", "creation_timestamp": "2026-06-17T07:07:25.754549Z"}, {"uuid": "221cd3c0-febf-4acc-9bd6-c92bffab07db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3mohs2xlhbs35", "content": "Fortinet FortiSandbox\u306e\u91cd\u5927\u306a\u8106\u5f31\u6027\u304c\u653b\u6483\u306b\u60aa\u7528\u3055\u308c\u308b\uff08CVE-2026-39813\u3001CVE-2026-39808\u3001CVE-2026-25089\uff09 | Codebook\uff5cSecurity News https://codebook.machinarecord.com/threatreport/silobreaker-cyber-alert/46235/", "creation_timestamp": "2026-06-17T07:29:37.279178Z"}, {"uuid": "165bfb3e-a845-4c13-a5ae-039c56f8631f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mohweb3xs52t", "content": "Three Fortinet FortiSandbox flaws, including CVE-2026-39808, are reportedly under active exploitation, alongside attacks on FortiClient EMS. SOCRadar also links FortiBleed to 30,000+ compromised devices. #Fortinet #FortiSandbox #FortiBleed", "creation_timestamp": "2026-06-17T08:45:22.819132Z"}, {"uuid": "01bdba6f-663c-4f17-9060-bc63681110a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1926", "content": "", "creation_timestamp": "2026-06-16T21:00:00.000000Z"}, {"uuid": "9e156030-5b38-4799-a609-bf4eb031cc9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://www.cert.dk/news/2026-06-17/Angreb-retter-sig-mod-FortiSandbox-saarbarheder", "content": "", "creation_timestamp": "2026-06-17T00:12:21.000000Z"}, {"uuid": "7b01d559-1cb4-427f-a927-ae49d3212c0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3moij2d74dc2h", "content": "Attackers are exploiting FortiSandbox vulnerabilities\n\nAttackers have been spotted exploiting three vulnerabilities (CVE-2026-39813, CVE-2026-39808, CVE-2026-25089) in FortiSandbox, a platform that other Fortinet security products depend on for threat verdicts to enforce blocking \u2026\n#hackernews #news", "creation_timestamp": "2026-06-17T14:19:52.094837Z"}, {"uuid": "f1aa1bcf-d11a-4f07-a117-55107d52a250", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/newsfacts.bsky.social/post/3moioonwzif27", "content": "Twee kritieke kwetsbaarheden in Fortinet FortiSandbox worden momenteel actief do\n\nEr worden twee kritieke kwetsbaarheden in Fortinet FortiSandbox actief door aanvallers uitgebuit: CVE-2026-39808, een OS-command injection kwetsbaarheid, en CVE-2026-39813, een path traversal kwetsbaarheid. For...", "creation_timestamp": "2026-06-17T16:00:42.835038Z"}, {"uuid": "f086c856-319c-4123-a506-c208233dcbc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "Telegram/zh_S2vtRGFzTlB-CmmThbMPfLwexNGU4NJPYEXS-uTem0w", "content": "", "creation_timestamp": "2026-06-16T13:28:41.000000Z"}, {"uuid": "1775191f-b1bf-4b18-91af-e60df922795d", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/f40990c2-c279-416a-8ef4-0fd46af15a9c", "content": "", "creation_timestamp": "2026-06-19T12:45:07.034885Z"}, {"uuid": "ec184fac-8a88-464c-8725-ae9601b9dad6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3moo3csgxk42f", "content": "Threat actors are exploiting Fortinet FortiSandbox vulnerabilities (CVE-2026-39813, CVE-2026-39808, CVE-2026-25089). Stay updated and patch to prevent breaches. #Cybersecurity", "creation_timestamp": "2026-06-19T19:30:00.371866Z"}]}