FORTINET Security Advisory
Published Date: May 12, 2026
Advisory Summary
âť— SQL Injection Vulnerability Discovered in FortiNDR with Moderate Severity
Fortinet has disclosed a security vulnerability categorized as CWE-89, involving an improper neutralization of special elements within SQL commands—commonly known as an SQL injection—in its FortiNDR product. This flaw allows an authenticated attacker to execute arbitrary SQL commands against selected databases and tables by sending carefully crafted HTTP requests.
The vulnerability carries a CVSSv3 base score of 5.1, indicating a moderate level of risk. While exploitation requires authenticated access, the potential for database manipulation or unauthorized data exposure could impact organizations relying on FortiNDR for network detection and response.
Security teams and infrastructure managers must evaluate their exposure to this vulnerability and implement Fortinet’s recommended patches or mitigations promptly to safeguard data integrity and maintain operational security within their environments.
- SQL injection vulnerability (CWE-89) in FortiNDR
- CVSSv3 Score: 5.1 (Moderate severity)
- Requires authenticated attacker access
- Potential for arbitrary SQL command execution on certain databases
Fortinet users should monitor official advisories and apply updates to mitigate this risk as soon as possible.
Reference: Vendor Advisory