> TritonInfoSec News
Home / Jun 11, 2026 / Story
0
#9 The Hacker News general June 10, 2026 at 15:10 UTC

Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities

By [email protected] (The Hacker News)

AI Summary

Fortinet, Ivanti, and SAP released coordinated security updates addressing multiple critical vulnerabilities, including CVE-2026-25089 (CVSS 9.1) — a command injection flaw in FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS WEB UI enabling RCE. Ivanti's patches include a maximum-severity flaw in Sentry secure mobile gateway allowing root-level code execution by unauthenticated remote attackers. SAP's June 2026 package covers 15 vulnerabilities including four critical flaws in NetWeaver and Commerce Cloud.

Read full article → https://thehackernews.com/2026/06/ivanti-fortinet-…

Relevance score: 81.0/100

# More from June 11

  1. 1
    Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs The Hacker News
  2. 2
    Microsoft June 2026 Patch Tuesday fixes 6 zero-days, 200 flaws BleepingComputer
  3. 3
    Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-days BleepingComputer
  4. 4
    Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows The Hacker News
  5. 5
    Oracle PeopleSoft servers hacked in ShinyHunters data theft attacks BleepingComputer
  6. 6
    Who Runs the Ransomware Group ‘The Gentlemen?’ Krebs on Security
  7. 7
    Unpatched Langflow Flaw CVE-2026-5027 Exploited for Unauthenticated RCE The Hacker News
  8. 8
    Microsoft patches Exchange Server zero-day exploited in attacks BleepingComputer
  9. 10
    China-linked JDY botnet expands targeting of U.S. military networks BleepingComputer