Fortinet, Ivanti, SAP Urge Immediate Security Patches
TL;DR: Fortinet, Ivanti, and SAP have released urgent security patches for critical vulnerabilities in their enterprise products. These flaws could allow attackers to execute their own code, posing a significant risk to businesses using their software.
Key facts
- Category
- Cybersecurity
- Impact
- Critical
- Published
- Source
- The Hacker News
Full summary
Fortinet, Ivanti, and SAP released urgent patches for critical flaws that could let attackers run code on company systems.
Major enterprise software vendors Fortinet, Ivanti, and SAP have released urgent security updates to address several critical vulnerabilities in their products. The patches fix flaws that could allow attackers to take control of affected systems. One of the most severe issues is a command injection vulnerability in Fortinet's FortiSandbox products, tracked as CVE-2026-25089. This particular flaw has a critical severity score of 9.1 out of 10. A successful exploit would allow an attacker to run their own commands on the system, effectively giving them unauthorized control. The updates from Ivanti and SAP also address critical issues that could lead to serious security breaches, including arbitrary code execution and disclosure of sensitive information.
These vulnerabilities pose a significant risk because the affected products are widely used in corporate and government networks to manage IT infrastructure and security. FortiSandbox, for example, is used to detect and analyze advanced threats. A flaw in a security product itself is especially dangerous, as it can be used to bypass the very defenses an organization relies on. For IT and security teams, these alerts are a high priority. An attacker who successfully exploits one of these flaws could potentially access confidential data, disrupt business operations, or use the compromised system as a launchpad for further attacks within the network. The high CVSS scores confirm that these are not minor bugs but serious security holes requiring immediate attention.
The coordinated release of patches from three different major vendors underscores the constant pressure on enterprise software security. Attackers are continuously probing these widely deployed systems for weaknesses. This incident serves as a critical reminder for all organizations to have a robust and timely patch management process in place. Failing to apply these updates quickly leaves networks exposed to known, high-impact exploits. Administrators should treat these advisories with the utmost urgency, as threat actors often develop ways to exploit newly announced vulnerabilities within hours or days of their public disclosure.
⚡ Action needed
Immediate patching is required for all affected Fortinet, Ivanti, and SAP products to prevent potential exploitation. Administrators should consult the vendors' security advisories for specific instructions and patch versions.
Action checklist
- 1Identify if your organization uses Fortinet, Ivanti, or SAP products.
- 2Specifically check for usage of FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS.
- 3Consult the official security advisories from each vendor for detailed information.
- 4Prioritize and apply the relevant security patches immediately.
- 5Monitor systems for any signs of compromise, especially if patching is delayed.
Related on Notifire
Primary source: The Hacker News