Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Fortinet security patch release for CVE-2026-44277

Security Patch Release
First reported
Last updated
Happening score
H score 50
1 unique sources, 1 articles

Summary

Hide ▲

Fortinet released security updates for FortiSandbox and FortiAuthenticator to fix two critical vulnerabilities that could let an unauthenticated attacker execute commands or arbitrary code on unpatched systems. The patch set covers CVE-2026-44277 in FortiAuthenticator and CVE-2026-26083 in FortiSandbox, with fixed versions including FortiAuthenticator 6.5.7, 6.6.9, and 8.0.3. FortiAuthenticator Cloud is not impacted, while the FortiSandbox Cloud and FortiSandbox PaaS WEB UI exposure keeps the affected surface broad.

Related Happenings

Ivanti security patch release for CVE-2026-8043

Security Patch Release
First: 18.05.2026 13:54 Last: 18.05.2026 13:54 Sources 1

About this happening: **Ivanti, Fortinet, SAP, Broadcom, and n8n** released **security fixes** on **2026-05-18** for flaws that could enable **authentication bypass**, **remote code execution**, **SQL...

Open Happening

Fortinet FortiClient EMS emergency patch release (CVE-2026-35616, CVE-2026-21643)

Security Patch Release
First: 07.04.2026 12:26 Last: 07.04.2026 12:26 Sources 1

About this happening: **Fortinet** released an **emergency hotfix** for **FortiClient Enterprise Management Server (EMS)** after confirming **active exploitation** of **CVE-2026-35616**, a critical fla...

Open Happening

CISA KEV patch directive for CVE-2025-53521

Advisory/Mitigation
First: 30.03.2026 10:07 Last: 30.03.2026 10:07 Sources 1

About this happening: CISA added **CVE-2025-53521** to its **KEV catalog** and told **federal agencies** to patch the F5 BIG-IP flaw within **three days**. The directive is urgent because the bug is be...

Open Happening

Hewlett Packard Enterprise (HPE) security patch release for CVE-2026-23813

Security Patch Release
First: 10.03.2026 19:30 Last: 10.03.2026 19:30 Sources 1

About this happening: **HPE** released **security updates** for **Aruba Networking AOS-CX**, closing **multiple vulnerabilities** including authentication and code execution issues on **CX-series campu...

Open Happening

Fortinet FortiGate CyberStrikeAI-assisted hacking campaign

Campaign
First: 03.03.2026 02:06 Last: 03.03.2026 02:06 Sources 1

About this happening: An **AI-assisted campaign** targeting **Fortinet FortiGate firewalls** has been tied to **CyberStrikeAI** infrastructure, suggesting automated tooling is helping scale attacks aga...

Open Happening

Timeline

  1. 12.05.2026 21:23 2 articles · 15d ago

    Fortinet releases fixes for FortiAuthenticator and FortiSandbox

    Mitigation Patch Update

    Fortinet released security updates on 2026-05-12 for FortiAuthenticator and FortiSandbox to address CVE-2026-44277 and CVE-2026-26083, both of which could let an unauthenticated attacker execute unauthorized code or commands on unpatched systems via crafted requests or HTTP requests. The fixes include FortiAuthenticator versions 6.5.7, 6.6.9, and 8.0.3, and FortiAuthenticator Cloud (formerly FortiTrust Identity) is not impacted.

    Show sources
    Open in new tab