Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Fortinet security patch release for CVE-2026-25089

Security Patch Release
First reported
Last updated
Happening score
H score 44
1 unique sources, 1 articles

Summary

Hide ▲

Fortinet, Ivanti, and SAP released security updates that address multiple critical vulnerabilities across FortiSandbox, Ivanti Sentry, and SAP products. The patches cover flaws that could lead to arbitrary code execution and information disclosure, including CVE-2026-25089 and two critical Ivanti Sentry issues. The release matters because the affected products include internet-facing and enterprise application components with high-impact exposure.

Related Happenings

SAP June 2026 Security Patch package for NetWeaver and Commerce Cloud

Security Patch Release
H score24 First: 09.06.2026 22:36 Last: 09.06.2026 22:36 Sources 1

About this happening: **SAP** released fixes for **15 vulnerabilities** in its **June 2026 Security Patch** package, including four **critical** flaws in **SAP NetWeaver** and **SAP Commerce Cloud** th...

Open Happening

TrendAI Trend Micro’s enterprise business security patch release for CVE-2026-34926

Security Patch Release
H score45 First: 22.05.2026 11:19 Last: 22.05.2026 11:19 Sources 1

About this happening: **TrendAI** released **Apex One** security updates after confirming a **zero-day** had been **exploited in the wild**, leaving **on-premises installations** at risk until patched....

Open Happening

Ivanti security patch release for CVE-2026-8043

Security Patch Release
H score25 First: 18.05.2026 13:54 Last: 18.05.2026 13:54 Sources 1

About this happening: **Ivanti, Fortinet, SAP, Broadcom, and n8n** released **security fixes** on **2026-05-18** for flaws that could enable **authentication bypass**, **remote code execution**, **SQL...

Open Happening

SAP May 2026 security updates for Commerce Cloud and S/4HANA (15 vulnerabilities)

Security Patch Release
H score42 First: 12.05.2026 14:04 Last: 12.05.2026 14:04 Sources 1

About this happening: **SAP** released its **May 2026 security updates** for **15 vulnerabilities** across **Commerce Cloud**, **S/4HANA**, and other products, including **two critical flaws** that can...

Open Happening

Linux kernel Dirty Frag patch release (CVE-2026-43284, CVE-2026-43500)

Security Patch Release
H score49 First: 11.05.2026 17:30 Last: 11.05.2026 17:30 Sources 1

About this happening: **Major Linux distributions** are rolling out fixes for **Dirty Frag**, the **Linux kernel** patch release that covers **CVE-2026-43284** and **CVE-2026-43500**. The update matter...

Open Happening

Timeline

  1. 10.06.2026 18:10 1 articles · 2h ago

    Ivanti Sentry fixes block root-level remote code execution

    Mitigation Patch Update

    Ivanti published fixes for Ivanti Sentry (formerly MobileIron Sentry) to address CVE-2026-10520, an operating system command injection issue that could let a remote unauthenticated user achieve root-level remote code execution, and CVE-2026-10523, an authentication bypass flaw that could let a remote unauthenticated attacker create arbitrary administrative accounts and gain full administrative access; the update adds controls that block access to the vulnerable endpoint and redirect unauthenticated requests to the login page.

    Show sources
    Open in new tab
  2. 10.06.2026 18:10 2 articles · 2h ago

    Fortinet FortiSandbox fixes close command injection flaw

    Mitigation Patch Update

    Fortinet released security updates for FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS WEB UI to address CVE-2026-25089, a command injection vulnerability that could allow an unauthenticated attacker to execute unauthorized commands through specially crafted HTTP requests; affected versions include FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox Cloud 5.0.4 through 5.0.5, and FortiSandbox PaaS 5.0.4 through 5.0.5.

    Show sources
    Open in new tab
  3. 10.06.2026 18:10 1 articles · 2h ago

    SAP fixes close critical flaws across NetWeaver, Commerce Cloud, and Data Hub

    Mitigation Patch Update

    SAP pushed out fixes for CVE-2026-44748, CVE-2026-27671, CVE-2026-22732, and CVE-2026-40128 affecting SAP NetWeaver AS ABAP, ABAP Platform, SAP Commerce Cloud, SAP Data Hub, and SAP NetWeaver Application Server Java; the issues include XML signature wrapping in SAML authentication, memory corruption in the ABAP application server, a potential Spring security issue, and directory traversal in the Java web container.

    Show sources
    Open in new tab