Vulnerability Details CVE-2026-39815
A improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiDDoS-F 7.2.1 through 7.2.2 may allow attacker to execute unauthorized code or commands via sending crafted HTTP requests
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.9%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2026-39815
-
cpe:2.3:a:fortinet:fortiddos-f:7.2.1