The Circuitry
THE CIRCUITRYYour one-stop source for all tech news
HOMETODAYNEWSFEEDEVENTS
BOOKMARKS
RSS
© 2026 The Circuitry
About UsSourcesContactCorrectionsPrivacy
  • Today
  • Feed
  • Events
  • Saved
Scroll for more
Verification
VERIFIEDConfidence: HIGH
Source identified
Claims cross-referenced
No discrepancies found
Fact-check summary

CISA's KEV catalog added CVE-2026-39808 (FortiSandbox OS command injection) and CVE-2026-58644 (SharePoint deserialization) on 2026-07-16 with July 19 federal due dates.

Sourcing
1source

via CISA KEV

CISA KEV · track record
2Stories
100%Verified
230d
All sources →
Markets
MSFT···

Live quote · not investment advice

Home/Tech/CISA Catalogs Fortinet FortiSandbox Flaw CVE-2026-39808 in KEV Catalog
VERIFIEDBy Xavier Rivera· ·1 min read

CISA Catalogs Fortinet FortiSandbox Flaw CVE-2026-39808 in KEV Catalog

CISA added the Fortinet FortiSandbox OS command injection vulnerability CVE-2026-39808 to its Known Exploited Vulnerabilities catalog on 2026-07-16. Federal agencies have until 2026-07-19 to apply vendor mitigations under BOD 26-04 or discontinue use if patches are unavailable.

Source:CISA KEV
Post
CISA Catalogs Fortinet FortiSandbox Flaw CVE-2026-39808 in KEV Catalog
TL;DRAI · 60 sec read

CISA adds Fortinet FortiSandbox OS command injection flaw CVE-2026-39808 to its Known Exploited Vulnerabilities catalog. The issue lets unauthenticated attackers execute code via crafted HTTP requests. Federal agencies must apply mitigations by July 19, 2026, or stop using the product under BOD 26-04.

CISA has added a Fortinet FortiSandbox OS command injection vulnerability to its Known Exploited Vulnerabilities catalog.

CISA catalogs Fortinet FortiSandbox vulnerability. The flaw, tracked as CVE-2026-39808, could allow an unauthenticated attacker to execute unauthorized code or commands via crafted HTTP requests. It was added to the catalog on 2026-07-16 with a federal remediation due date of 2026-07-19.
The flaw, tracked as CVE-2026-39808, could allow an unauthenticated attacker to execute unauthorized code or commands via crafted HTTP requests.

The vulnerability is described as an OS command injection issue in Fortinet FortiSandbox.

Required actions target federal agencies and stakeholders. Agencies must apply mitigations in accordance with vendor instructions. Compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk and the agency’s Forensics Triage Requirements is mandatory.
From The CircuitryThe Feed — live briefs across tech, all day.See what’s happening →

For cloud services, stakeholders must follow applicable BOD 26-04 guidance. If mitigations are unavailable, they must discontinue use of the product.
If mitigations are unavailable, they must discontinue use of the product.

Stakeholders bear responsibility for exposure assessments. Each organization must evaluate every asset’s internet exposure. Adherence to BOD 26-04 patching guidelines is required.
The catalog entry appears alongside a separate Microsoft SharePoint deserialization of untrusted data vulnerability, CVE-2026-58644, also added on 2026-07-16 with the same due date. Both entries carry identical remediation language tied to BOD 26-04.

EXPERT TAKE

Enterprises running on-premises SharePoint should treat this KEV addition as an immediate patching priority given confirmed active exploitation.

Why this mattersAI · ~100 words

Tap a lens to see what this story means for you.

Reader-supported
DonateBuy me a coffee →Follow@thecircuitry_ →Follow@thecircuitry.to →

Reader-supported · The Brief

Liked this? The Brief brings you the whole day in tech, verified, every morning. Two minutes, free forever.

HELP US IMPROVE
From The Circuitry

See what’s happening right now

The Feed runs all day — short, verified briefs the moment they break.

Open the Feed →
From The Circuitry

Follow @thecircuitry_

Every story we publish, as it happens. No noise between.

Follow on X ↗On Bluesky ↗

Reader-supported

The Circuitry is a passion project I've always wanted to build, and I love the work behind it.

Running it costs real money. APIs, hosting, time. To keep improving the site and growing this into something useful for everyone, those costs have to be covered.

Any contribution is appreciated. If not, no pressure. Thanks for reading.

Buy me a coffee
MicrosoftSharePointSecurityVulnerabilityCISA
More fromCISA KEV
  • CISA Adds KNX Protocol CVE-2023-4346 to KEV Catalog

    Tech · 1d
More inTech
  • Lenovo App Store Path Traversal Flaw Rated High Severity

    Tech · 2h
  • TSMC profit surges 77% as Arizona spending swells by $100 billion

    Tech · 6h
  • China's CXMT Doubles IPO Target to $8.55 Billion

    Tech · 22h
SupportThe Work

The Circuitry is reader-supported. If you find the daily brief useful, you can buy me a coffee to keep it going.

Buy a coffee →
SubscribeCircuitry Brief

Liked this? The Brief brings you the whole day in tech, verified, every morning. Free forever.

MORE IN TECH

Lenovo App Store Path Traversal Flaw Rated High Severity

Lenovo disclosed CVE-2026-13103, a path traversal vulnerability in its China-only App Store that could let a local authenticated user run arbitrary code. The flaw is rated high severity with CVSS 7.3 and affects versions before 9.0.2930.0514 on Windows.

TSMC profit surges 77% as Arizona spending swells by $100 billion

TSMC posted a 77.4% year-on-year profit increase to NT$706.56 billion and raised its capital spending outlook while announcing another $100 billion for Arizona fabs. The results underscore sustained AI demand that now dominates 66% of its platform revenue.

China's CXMT Doubles IPO Target to $8.55 Billion

ChangXin Memory Technologies expects to raise 57.9 billion yuan ($8.55 billion) in its Shanghai STAR Market IPO after doubling its original target. The world's fourth-largest DRAM chipmaker will list on July 27, advancing China's push for semiconductor self-reliance.