CVE-2025-46215

CWE-6534 documents4 sources
Severity
5.3MEDIUM
EPSS
0.1%
top 69.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Fortinet Fortisandbox
Timeline
PublishedNov 18

Description

An Improper Isolation or Compartmentalization vulnerability [CWE-653] in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.7, FortiSandbox 4.2 all versions, FortiSandbox 4.0 all versions may allow an unauthenticated attacker to evade the sandboxing scan via a crafted file.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

NVDfortinet/fortisandbox4.0.04.4.8+1
CVEListV5fortinet/fortisandbox5.0.05.0.1+3

🔴Vulnerability Details

2
CVEList
CVE-2025-46215: An Improper Isolation or Compartmentalization vulnerability [CWE-653] in Fortinet FortiSandbox 52025-11-18
GHSA
GHSA-gq6j-mr3q-jv97: An Improper Isolation or Compartmentalization vulnerability [CWE-653] in Fortinet FortiSandbox 52025-11-18

📋Vendor Advisories

1
Fortinet
File scan result bypass2025-11-18
CVE-2025-46215 (MEDIUM CVSS 5.3) | An Improper Isolation or Compartmen | cvebase.io