Improper Isolation or Compartmentalization

CVE-2025-46215

Medium

5.3/10

Summary

An Improper Isolation or Compartmentalization vulnerability [CWE-653] in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.7, FortiSandbox 4.2 all versions, FortiSandbox 4.0 all versions may allow an unauthenticated attacker to evade the sandboxing scan via a crafted file.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: LOW
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: NONE
Availability Impact: NONE

CWE-653 - Improper Isolation or Compartmentalization

The product does not properly compartmentalize or isolate functionality, processes, or resources that require different privilege levels, rights, or permissions.

References

Advisory Timeline

Published Nov 18, 2025

Improper Isolation or Compartmentalization

CVE-2025-46215

Summary

CWE-653 - Improper Isolation or Compartmentalization

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS