Fortinet has issued security updates addressing a critical flaw in FortiSIEM that enables unauthenticated remote code execution through a command injection vulnerability. This flaw, if exploited, can lead to full system compromise, impacting specific FortiSIEM versions. #FortiSIEM #CVE-2025-64155
Keypoints
- Fortinet released patches for a critical OS command injection flaw in FortiSIEM.
- The vulnerability affects specific FortiSIEM versions and involves the phMonitor service.
- An attacker can exploit the flaw remotely without authentication to escalate privileges.
- The attack involves writing a reverse shell to gain root access and system control.
- Fortinet recommends updating affected versions and restricting access to port 7900 as a workaround.
Read More: https://thehackernews.com/2026/01/fortinet-fixes-critical-fortisiem-flaw.html