{"id":11607,"date":"2026-07-17T12:01:34","date_gmt":"2026-07-17T18:01:34","guid":{"rendered":"https:\/\/beaconlab.us\/?post_type=publicacion&#038;p=11607"},"modified":"2026-07-17T12:01:35","modified_gmt":"2026-07-17T18:01:35","slug":"alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet","status":"publish","type":"publicacion","link":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/","title":{"rendered":"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\">Producto(s) afectado(s):&nbsp;<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u00b7 FortiSandbox 4.4.0 a 4.4.8<\/li>\n\n\n\n<li>\u00b7 FortiSandbox 5.0.0 a 5.0.5<\/li>\n\n\n\n<li>\u00b7 FortiSandbox Cloud 5.0.4 a 5.0.5<\/li>\n\n\n\n<li>\u00b7 FortiSandbox PaaS 5.0.4 a 5.0.5<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Descripci\u00f3n<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">La <strong>Cybersecurity and Infrastructure Security Agency (CISA)<\/strong> de los Estados Unidos incorpor\u00f3 dos vulnerabilidades cr\u00edticas de <strong>Fortinet FortiSandbox<\/strong> a su cat\u00e1logo de <strong>Known Exploited Vulnerabilities (KEV)<\/strong> tras confirmar su explotaci\u00f3n activa. Como parte de la <strong>Binding Operational Directive (BOD) 26-04<\/strong>, las agencias federales estadounidenses deben aplicar las actualizaciones correspondientes <strong>a m\u00e1s tardar el 19 de julio de 2026<\/strong> para mitigar el riesgo de compromiso.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Aunque la directiva de CISA incorpora formalmente <strong>CVE-2026-39808<\/strong> y <strong>CVE-2026-25089<\/strong>, diversas firmas de inteligencia de amenazas observaron que los atacantes tambi\u00e9n est\u00e1n intentando explotar <strong>CVE-2026-39813<\/strong>, lo que indica campa\u00f1as dirigidas contra m\u00faltiples fallas del producto.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">FortiSandbox es una soluci\u00f3n utilizada para el an\u00e1lisis din\u00e1mico de archivos y URLs sospechosos dentro del ecosistema <strong>Fortinet Security Fabric<\/strong>. Debido a su integraci\u00f3n con firewalls, soluciones EDR, correo electr\u00f3nico, SIEM y SOAR, un compromiso del appliance puede afectar m\u00faltiples controles de seguridad empresariales.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Las vulnerabilidades identificadas son:<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>CVE-2026-25089 \u2013 OS Command Injection (CVSS 9.8)<\/strong>: Esta vulnerabilidad afecta la interfaz web de FortiSandbox, FortiSandbox Cloud y FortiSandbox PaaS. Un <strong>atacante remoto no autenticado <\/strong>puede enviar solicitudes HTTP especialmente dise\u00f1adas para <strong>ejecutar comandos arbitrarios sobre el sistema operativo<\/strong> del dispositivo comprometido.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>CVE-2026-39813 \u2013 Path Traversal \/ Authentication Bypass (CVSS 9.1)<\/strong>: Esta vulnerabilidad permite a un <strong>atacante remoto manipular rutas<\/strong> dentro de la interfaz JRPC API para eludir controles de autenticaci\u00f3n y acceder a funcionalidades restringidas. En combinaci\u00f3n con otras vulnerabilidades, puede facilitar la ejecuci\u00f3n de c\u00f3digo y el compromiso total del appliance.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>CVE-2026-39808 \u2013 OS Command Injection (CVSS 9.1): <\/strong>Esta vulnerabilidad corresponde a una <strong>inyecci\u00f3n de comandos del sistema operativo<\/strong> en una API de FortiSandbox. Un atacante remoto <strong>no autenticado<\/strong> puede enviar solicitudes HTTP especialmente dise\u00f1adas para ejecutar c\u00f3digo o comandos arbitrarios sobre el dispositivo vulnerable.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Cuando Fortinet public\u00f3 inicialmente los parches en junio de 2026, indic\u00f3 que <strong>no exist\u00eda evidencia de explotaci\u00f3n activa<\/strong>. Sin embargo, pocos d\u00edas despu\u00e9s, investigadores independientes y empresas de inteligencia de amenazas reportaron actividad maliciosa dirigida contra dispositivos vulnerables expuestos a Internet. Posteriormente, CISA confirm\u00f3 la explotaci\u00f3n activa al incorporar <strong>CVE-2026-25089<\/strong> y <strong>CVE-2026-39813<\/strong> al cat\u00e1logo <strong>KEV<\/strong>, obligando a las agencias federales estadounidenses a corregirlas en un plazo reducido.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Diversos investigadores se\u00f1alan que los atacantes est\u00e1n utilizando estas vulnerabilidades para comprometer dispositivos FortiSandbox expuestos y obtener ejecuci\u00f3n remota de c\u00f3digo, lo que convierte a los appliances \u2014dise\u00f1ados para analizar malware\u2014 en un punto de entrada hacia la infraestructura corporativa.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">El 16 de junio de 2026 investigadores de <strong>Defused<\/strong> detectaron campa\u00f1as activas dirigidas contra dispositivos FortiSandbox vulnerables, observando explotaci\u00f3n de <strong>CVE-2026-39808<\/strong>, <strong>CVE-2026-25089<\/strong> y tambi\u00e9n intentos relacionados con <strong>CVE-2026-39813<\/strong>. Posteriormente, el 17 de julio de 2026, <strong>CISA confirm\u00f3 la explotaci\u00f3n activa de CVE-2026-39808 y CVE-2026-25089<\/strong>, incorpor\u00e1ndolas al cat\u00e1logo <strong>Known Exploited Vulnerabilities (KEV)<\/strong> y estableciendo un plazo acelerado para su remediaci\u00f3n por parte de las agencias federales.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">El hecho de que FortiSandbox forme parte de <strong>Fortinet Security Fabric<\/strong> incrementa el riesgo operativo, ya que un dispositivo comprometido puede alterar los resultados de an\u00e1lisis de archivos, distribuir veredictos err\u00f3neos a otros productos Fortinet y servir como punto de apoyo para comprometer la infraestructura empresarial.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Las ciertas vulnerabilidades ya habian sido alertadas semanas atras por Beaconlab, puede leer los detalles <a href=\"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-38-vulnerabilidades-criticas-de-rce-en-fortinet-fortisandbox\/\">aqu\u00ed<\/a>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Soluci\u00f3n<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Se recomienda a los administradores realizar las siguientes acciones:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>FortiSandbox 5.0.x \u2192 <strong>5.0.6<\/strong> o superior.<\/li>\n\n\n\n<li>FortiSandbox 4.4.x \u2192 <strong>4.4.9<\/strong> o superior.<\/li>\n\n\n\n<li>FortiSandbox Cloud \u2192 <strong>5.0.6<\/strong> o superior.<\/li>\n\n\n\n<li>FortiSandbox PaaS \u2192 <strong>5.0.6<\/strong> o superior.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Informaci\u00f3n adicional:<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/cisa-warns-feds-to-patch-exploited-fortinet-fortisandbox-flaws-by-sunday\" target=\"_blank\" rel=\"noreferrer noopener\">BleepingComputer \u2013 CISA warns feds to patch exploited Fortinet FortiSandbox flaws by Sunday<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/fortiguard.fortinet.com\/psirt\/FG-IR-26-141\" target=\"_blank\" rel=\"noreferrer noopener\">Fortinet PSIRT FG-IR-26-141<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/critical-fortinet-fortisandbox-flaws-now-exploited-in-attacks\" target=\"_blank\" rel=\"noreferrer noopener\">BleepingComputer \u2013 Critical Fortinet FortiSandbox flaws now exploited in attacks<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/www.cybersecuritydive.com\/news\/critical-vulnerabilities-fortinet-fortisandbox-exploitation\/823027\" target=\"_blank\" rel=\"noreferrer noopener\">Cybersecurity Dive \u2013 Critical Fortinet FortiSandbox vulnerabilities are under exploitation<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/arcticwolf.com\/resources\/blog\/cve-2026-25089\" target=\"_blank\" rel=\"noreferrer noopener\">Arctic Wolf \u2013 CVE-2026-25089 Advisory<\/a><\/li>\n<\/ul>\n","protected":false},"featured_media":0,"template":"","class_list":["post-11607","publicacion","type-publicacion","status-publish","hentry"],"acf":{"activar_pdf_link":false,"pdf":null,"numero_de_boletin":"","traffic_light_protocol":"Amber"},"aioseo_notices":[],"aioseo_head":"\n\t\t<!-- All in One SEO 4.9.9 - aioseo.com -->\n\t<meta name=\"description\" content=\"Producto(s) afectado(s): \u00b7 FortiSandbox 4.4.0 a 4.4.8 \u00b7 FortiSandbox 5.0.0 a 5.0.5 \u00b7 FortiSandbox Cloud 5.0.4 a 5.0.5 \u00b7 FortiSandbox PaaS 5.0.4 a 5.0.5 Descripci\u00f3n La Cybersecurity and Infrastructure Security Agency (CISA) de los Estados Unidos incorpor\u00f3 dos vulnerabilidades cr\u00edticas de Fortinet FortiSandbox a su cat\u00e1logo de Known Exploited Vulnerabilities (KEV) tras confirmar su explotaci\u00f3n\" \/>\n\t<meta name=\"robots\" content=\"max-image-preview:large\" \/>\n\t<link rel=\"canonical\" href=\"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/\" \/>\n\t<meta name=\"generator\" content=\"All in One SEO (AIOSEO) 4.9.9\" \/>\n\t\t<meta property=\"og:locale\" content=\"es_ES\" \/>\n\t\t<meta property=\"og:site_name\" content=\"Beacon Lab - CSIRT by Cybolt\" \/>\n\t\t<meta property=\"og:type\" content=\"article\" \/>\n\t\t<meta property=\"og:title\" content=\"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet - Beacon Lab\" \/>\n\t\t<meta property=\"og:description\" content=\"Producto(s) afectado(s): \u00b7 FortiSandbox 4.4.0 a 4.4.8 \u00b7 FortiSandbox 5.0.0 a 5.0.5 \u00b7 FortiSandbox Cloud 5.0.4 a 5.0.5 \u00b7 FortiSandbox PaaS 5.0.4 a 5.0.5 Descripci\u00f3n La Cybersecurity and Infrastructure Security Agency (CISA) de los Estados Unidos incorpor\u00f3 dos vulnerabilidades cr\u00edticas de Fortinet FortiSandbox a su cat\u00e1logo de Known Exploited Vulnerabilities (KEV) tras confirmar su explotaci\u00f3n\" \/>\n\t\t<meta property=\"og:url\" content=\"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/\" \/>\n\t\t<meta property=\"og:image\" content=\"https:\/\/beaconlab.mx\/wp-content\/uploads\/2023\/12\/BeaconLab_V2-03.png\" \/>\n\t\t<meta property=\"og:image:secure_url\" content=\"https:\/\/beaconlab.mx\/wp-content\/uploads\/2023\/12\/BeaconLab_V2-03.png\" \/>\n\t\t<meta property=\"article:published_time\" content=\"2026-07-17T18:01:34+00:00\" \/>\n\t\t<meta property=\"article:modified_time\" content=\"2026-07-17T18:01:35+00:00\" \/>\n\t\t<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n\t\t<meta name=\"twitter:site\" content=\"@BeaconLabMX\" \/>\n\t\t<meta name=\"twitter:title\" content=\"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet - Beacon Lab\" \/>\n\t\t<meta name=\"twitter:description\" content=\"Producto(s) afectado(s): \u00b7 FortiSandbox 4.4.0 a 4.4.8 \u00b7 FortiSandbox 5.0.0 a 5.0.5 \u00b7 FortiSandbox Cloud 5.0.4 a 5.0.5 \u00b7 FortiSandbox PaaS 5.0.4 a 5.0.5 Descripci\u00f3n La Cybersecurity and Infrastructure Security Agency (CISA) de los Estados Unidos incorpor\u00f3 dos vulnerabilidades cr\u00edticas de Fortinet FortiSandbox a su cat\u00e1logo de Known Exploited Vulnerabilities (KEV) tras confirmar su explotaci\u00f3n\" \/>\n\t\t<meta name=\"twitter:image\" content=\"https:\/\/beaconlab.mx\/wp-content\/uploads\/2023\/12\/BeaconLab_V2-03.png\" \/>\n\t\t<script type=\"application\/ld+json\" class=\"aioseo-schema\">\n\t\t\t{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/publicacion\\\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\\\/#breadcrumblist\",\"itemListElement\":[{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/#listItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/publicacion\\\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\\\/#listItem\",\"name\":\"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/publicacion\\\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\\\/#listItem\",\"position\":2,\"name\":\"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet\",\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/#listItem\",\"name\":\"Home\"}}]},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/#organization\",\"name\":\"Beacon Lab\",\"description\":\"CSIRT by Cybolt\",\"url\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/\",\"telephone\":\"+528007374357\",\"logo\":{\"@type\":\"ImageObject\",\"url\":\"https:\\\/\\\/beaconlab.mx\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/BeaconLab_V2-03.png\",\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/publicacion\\\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\\\/#organizationLogo\"},\"image\":{\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/publicacion\\\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\\\/#organizationLogo\"},\"sameAs\":[\"https:\\\/\\\/twitter.com\\\/BeaconLabMX\",\"https:\\\/\\\/www.linkedin.com\\\/showcase\\\/beaconlabmx\"]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/publicacion\\\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\\\/#webpage\",\"url\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/publicacion\\\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\\\/\",\"name\":\"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet - Beacon Lab\",\"description\":\"Producto(s) afectado(s): \\u00b7 FortiSandbox 4.4.0 a 4.4.8 \\u00b7 FortiSandbox 5.0.0 a 5.0.5 \\u00b7 FortiSandbox Cloud 5.0.4 a 5.0.5 \\u00b7 FortiSandbox PaaS 5.0.4 a 5.0.5 Descripci\\u00f3n La Cybersecurity and Infrastructure Security Agency (CISA) de los Estados Unidos incorpor\\u00f3 dos vulnerabilidades cr\\u00edticas de Fortinet FortiSandbox a su cat\\u00e1logo de Known Exploited Vulnerabilities (KEV) tras confirmar su explotaci\\u00f3n\",\"inLanguage\":\"es-ES\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/#website\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/publicacion\\\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\\\/#breadcrumblist\"},\"datePublished\":\"2026-07-17T12:01:34-06:00\",\"dateModified\":\"2026-07-17T12:01:35-06:00\"},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/#website\",\"url\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/\",\"name\":\"Beacon Lab\",\"description\":\"CSIRT by Cybolt\",\"inLanguage\":\"es-ES\",\"publisher\":{\"@id\":\"https:\\\/\\\/beaconlab.us\\\/es\\\/#organization\"}}]}\n\t\t<\/script>\n\t\t<!-- All in One SEO -->\n\n","aioseo_head_json":{"title":"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet - Beacon Lab","description":"Producto(s) afectado(s): \u00b7 FortiSandbox 4.4.0 a 4.4.8 \u00b7 FortiSandbox 5.0.0 a 5.0.5 \u00b7 FortiSandbox Cloud 5.0.4 a 5.0.5 \u00b7 FortiSandbox PaaS 5.0.4 a 5.0.5 Descripci\u00f3n La Cybersecurity and Infrastructure Security Agency (CISA) de los Estados Unidos incorpor\u00f3 dos vulnerabilidades cr\u00edticas de Fortinet FortiSandbox a su cat\u00e1logo de Known Exploited Vulnerabilities (KEV) tras confirmar su explotaci\u00f3n","canonical_url":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/","robots":"max-image-preview:large","keywords":"","webmasterTools":{"miscellaneous":""},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"BreadcrumbList","@id":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/#breadcrumblist","itemListElement":[{"@type":"ListItem","@id":"https:\/\/beaconlab.us\/es\/#listItem","position":1,"name":"Home","item":"https:\/\/beaconlab.us\/es\/","nextItem":{"@type":"ListItem","@id":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/#listItem","name":"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet"}},{"@type":"ListItem","@id":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/#listItem","position":2,"name":"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet","previousItem":{"@type":"ListItem","@id":"https:\/\/beaconlab.us\/es\/#listItem","name":"Home"}}]},{"@type":"Organization","@id":"https:\/\/beaconlab.us\/es\/#organization","name":"Beacon Lab","description":"CSIRT by Cybolt","url":"https:\/\/beaconlab.us\/es\/","telephone":"+528007374357","logo":{"@type":"ImageObject","url":"https:\/\/beaconlab.mx\/wp-content\/uploads\/2023\/12\/BeaconLab_V2-03.png","@id":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/#organizationLogo"},"image":{"@id":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/#organizationLogo"},"sameAs":["https:\/\/twitter.com\/BeaconLabMX","https:\/\/www.linkedin.com\/showcase\/beaconlabmx"]},{"@type":"WebPage","@id":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/#webpage","url":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/","name":"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet - Beacon Lab","description":"Producto(s) afectado(s): \u00b7 FortiSandbox 4.4.0 a 4.4.8 \u00b7 FortiSandbox 5.0.0 a 5.0.5 \u00b7 FortiSandbox Cloud 5.0.4 a 5.0.5 \u00b7 FortiSandbox PaaS 5.0.4 a 5.0.5 Descripci\u00f3n La Cybersecurity and Infrastructure Security Agency (CISA) de los Estados Unidos incorpor\u00f3 dos vulnerabilidades cr\u00edticas de Fortinet FortiSandbox a su cat\u00e1logo de Known Exploited Vulnerabilities (KEV) tras confirmar su explotaci\u00f3n","inLanguage":"es-ES","isPartOf":{"@id":"https:\/\/beaconlab.us\/es\/#website"},"breadcrumb":{"@id":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/#breadcrumblist"},"datePublished":"2026-07-17T12:01:34-06:00","dateModified":"2026-07-17T12:01:35-06:00"},{"@type":"WebSite","@id":"https:\/\/beaconlab.us\/es\/#website","url":"https:\/\/beaconlab.us\/es\/","name":"Beacon Lab","description":"CSIRT by Cybolt","inLanguage":"es-ES","publisher":{"@id":"https:\/\/beaconlab.us\/es\/#organization"}}]},"og:locale":"es_ES","og:site_name":"Beacon Lab - CSIRT by Cybolt","og:type":"article","og:title":"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet - Beacon Lab","og:description":"Producto(s) afectado(s): \u00b7 FortiSandbox 4.4.0 a 4.4.8 \u00b7 FortiSandbox 5.0.0 a 5.0.5 \u00b7 FortiSandbox Cloud 5.0.4 a 5.0.5 \u00b7 FortiSandbox PaaS 5.0.4 a 5.0.5 Descripci\u00f3n La Cybersecurity and Infrastructure Security Agency (CISA) de los Estados Unidos incorpor\u00f3 dos vulnerabilidades cr\u00edticas de Fortinet FortiSandbox a su cat\u00e1logo de Known Exploited Vulnerabilities (KEV) tras confirmar su explotaci\u00f3n","og:url":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/","og:image":"https:\/\/beaconlab.mx\/wp-content\/uploads\/2023\/12\/BeaconLab_V2-03.png","og:image:secure_url":"https:\/\/beaconlab.mx\/wp-content\/uploads\/2023\/12\/BeaconLab_V2-03.png","article:published_time":"2026-07-17T18:01:34+00:00","article:modified_time":"2026-07-17T18:01:35+00:00","twitter:card":"summary_large_image","twitter:site":"@BeaconLabMX","twitter:title":"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet - Beacon Lab","twitter:description":"Producto(s) afectado(s): \u00b7 FortiSandbox 4.4.0 a 4.4.8 \u00b7 FortiSandbox 5.0.0 a 5.0.5 \u00b7 FortiSandbox Cloud 5.0.4 a 5.0.5 \u00b7 FortiSandbox PaaS 5.0.4 a 5.0.5 Descripci\u00f3n La Cybersecurity and Infrastructure Security Agency (CISA) de los Estados Unidos incorpor\u00f3 dos vulnerabilidades cr\u00edticas de Fortinet FortiSandbox a su cat\u00e1logo de Known Exploited Vulnerabilities (KEV) tras confirmar su explotaci\u00f3n","twitter:image":"https:\/\/beaconlab.mx\/wp-content\/uploads\/2023\/12\/BeaconLab_V2-03.png"},"aioseo_meta_data":{"post_id":"11607","title":null,"description":null,"keywords":null,"keyphrases":{"focus":{"keyphrase":"","score":0,"analysis":{"keyphraseInTitle":{"score":0,"maxScore":9,"error":1}}},"additional":[]},"primary_term":null,"canonical_url":null,"og_title":null,"og_description":null,"og_object_type":"default","og_image_type":"default","og_image_url":null,"og_image_width":null,"og_image_height":null,"og_image_custom_url":null,"og_image_custom_fields":null,"og_video":"","og_custom_url":null,"og_article_section":null,"og_article_tags":null,"twitter_use_og":false,"twitter_card":"default","twitter_image_type":"default","twitter_image_url":null,"twitter_image_custom_url":null,"twitter_image_custom_fields":null,"twitter_title":null,"twitter_description":null,"schema":{"blockGraphs":[],"customGraphs":[],"default":{"data":{"Article":[],"Course":[],"Dataset":[],"FAQPage":[],"Movie":[],"Person":[],"Product":[],"ProductReview":[],"Car":[],"Recipe":[],"Service":[],"SoftwareApplication":[],"WebPage":[]},"graphName":"WebPage","isEnabled":true},"graphs":[]},"schema_type":"default","schema_type_options":null,"pillar_content":false,"robots_default":true,"robots_noindex":false,"robots_noarchive":false,"robots_nosnippet":false,"robots_nofollow":false,"robots_noimageindex":false,"robots_noodp":false,"robots_notranslate":false,"robots_max_snippet":"-1","robots_max_videopreview":"-1","robots_max_imagepreview":"large","priority":null,"frequency":"default","local_seo":null,"breadcrumb_settings":null,"limit_modified_date":false,"ai":{"faqs":[],"keyPoints":[],"schemas":[],"titles":[],"descriptions":[],"socialPosts":{"email":{"subject":"","preview":"","content":""},"linkedin":[],"twitter":[],"facebook":[],"instagram":[]}},"created":"2026-07-17 18:01:35","updated":"2026-07-17 20:59:19","seo_analyzer_scan_date":null},"aioseo_breadcrumb":"<div class=\"aioseo-breadcrumbs\"><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/beaconlab.us\/es\/\" title=\"Home\">Home<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\tAlerta 2026-73 Vulnerabilidades activamente explotadas Fortinet\n\t\t<\/span><\/div>","aioseo_breadcrumb_json":[{"label":"Home","link":"https:\/\/beaconlab.us\/es\/"},{"label":"Alerta 2026-73 Vulnerabilidades activamente explotadas Fortinet","link":"https:\/\/beaconlab.us\/es\/publicacion\/alerta-2026-73-vulnerabilidades-activamente-explotadas-fortinet\/"}],"_links":{"self":[{"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/publicacion\/11607","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/publicacion"}],"about":[{"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/types\/publicacion"}],"version-history":[{"count":1,"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/publicacion\/11607\/revisions"}],"predecessor-version":[{"id":11608,"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/publicacion\/11607\/revisions\/11608"}],"wp:attachment":[{"href":"https:\/\/beaconlab.us\/es\/wp-json\/wp\/v2\/media?parent=11607"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}