Instances of SQL Injection vulnerabilities in FortiSandbox's checksum search and MTA-quarantine modules may allow an authenticated attacker to execute unauthorized code on the underlying SQL interpreter via specifically crafted HTTP requests.
FortiSandbox version 3.2.2 and earlier.
FortiSandbox version 3.1.4 and earlier.
Upgrade to FortiSandbox version 3.2.2 or later.
Upgrade to FortiSandbox version 3.1.5 or later.