Fortinet and Ivanti have released security updates addressing several critical vulnerabilities affecting widely deployed enterprise products. The flaws could allow attackers to execute arbitrary code, gain elevated privileges, or compromise sensitive systems if left unpatched.
The most severe issue was identified in Ivanti Sentry, where a command injection vulnerability tracked as CVE-2026-10520 received the maximum CVSS severity score of 10.0. According to Ivanti, a remote unauthenticated attacker could exploit the flaw to execute operating system commands with root privileges on vulnerable devices. The company has addressed the issue in updated versions of Sentry and strongly recommends that customers upgrade as soon as possible.
Fortinet also released patches for multiple vulnerabilities across its product portfolio, including a critical flaw affecting FortiSandbox. The vulnerability could allow unauthorized attackers to execute code or commands through specially crafted HTTP requests, potentially leading to full system compromise. Security teams are encouraged to review Fortinet’s advisories and apply the recommended updates without delay.
While there is currently no public evidence that these vulnerabilities are being actively exploited in the wild, security experts warn that newly disclosed critical flaws in security infrastructure products often become attractive targets for cybercriminals and state-sponsored threat actors. Once technical details become available, attackers frequently attempt to weaponize them before organizations have completed patching efforts.
The disclosures highlight the ongoing challenges organizations face in maintaining secure environments as network security appliances, mobile device management platforms, and other critical infrastructure continue to attract increasing attention from threat actors. Prompt patch management remains one of the most effective defenses against emerging cyber threats.
Organizations using affected Fortinet or Ivanti products should prioritize deploying the latest security updates, verify that exposed systems have not been compromised, and review security logs for any signs of suspicious activity. As attackers continue to focus on internet-facing enterprise software, reducing the window of exposure is essential to maintaining a strong security posture.