How to find Fortinet FortiSandbox on your network

Fortinet disclosed two critical FortiSandbox vulnerabilities (CVE-2026-39808 and CVE-2026-39813) that enable remote unauthenticated attackers to perform OS command injection and API privilege escalation via a path traversal flaw. Affected FortiSandbox versions are 4.4.0–4.4.8 (both CVEs) and 5.0.0–5.0.5 (CVE-2026-39813), with upgrades to 4.4.9 and 5.0.6+ recommended to remediate the issues.