CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Command Injection Vulnerability

Exploit code has been published for CVE-2025-64155, a critical command injection vulnerability affecting Fortinet FortiSIEM devices.

Key takeaways:

CVE-2025-64155 is a critical operating system (OS) command injection vulnerability affecting Fortinet FortiSIEM.
Fortinet vulnerabilities have historically been common targets for cyber attackers, with 23 Fortinet CVEs currently on the CISA KEV list.
Public exploit code has been released, increasing the likelihood that CVE-2025-64155 could be exploited by attackers.

Background

On January 13, Fortinet published a security advisory (FG-IR-25-772) for CVE-2025-64155, a critical command injection vulnerability affecting Fortinet FortiSIEM.

CVE	Description	CVSSv3
CVE-2025-64155	Fortinet FortiSIEM Command Injection Vulnerability	9.4

Analysis

CVE-2025-64155 is a critical operating system (OS) command injection vulnerability affecting Fortinet FortiSIEM. A remote, unauthenticated attacker can exploit this flaw to execute arbitrary code using specially crafted requests.

Historical Exploitation of Fortinet Devices

Fortinet vulnerabilities have historically been common targets for cyber attackers, with 23 Fortinet CVEs currently on the Cybersecurity and Infrastructure Security Agency’s (CISA) Known Exploited Vulnerabilities (KEV) list. At the time this blog was published on January 14, CVE-2025-64155 had not been added to the KEV, however we anticipate that it is likely to be added in the near future.

As Fortinet devices have been popular targets for attackers, the Tenable Research Special Operations Team (RSO) has authored several blogs about vulnerabilities affecting these devices. The following table outlines some of the most impactful Fortinet vulnerabilities in recent years.

CVE

Descrip

[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.

This article has been indexed from Security Boulevard

Read the original article:

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Command Injection Vulnerability

Share this:
Facebook
X
LinkedIn
Like this:
Like Loading...

Related

Tags: EN Security Boulevard

Post navigation

← Microsoft Copilot Reprompt Attack Enables Stealthy Data Exfiltration

Stealthy CastleLoader Malware Attacking US Government Agencies and Critical Infrastructure →

Search for:
Pages

Advertising

Contact

Legal and Contact information

Opt-out preferences

Privacy Policy

Social Media

Apps

Telegram Channel

Recent Posts

IT Security News Hourly Summary 2026-01-15 00h : 1 posts January 15, 2026

IT Security News Daily Summary 2026-01-14 January 15, 2026

Stealthy CastleLoader Malware Attacking US Government Agencies and Critical Infrastructure January 15, 2026

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Command Injection Vulnerability January 15, 2026

Microsoft Copilot Reprompt Attack Enables Stealthy Data Exfiltration January 14, 2026

This WhatsApp Link Can Hand Over Your Account in Seconds January 14, 2026

New Linux malware targets the cloud, steals creds, and then vanishes January 14, 2026

CERT-UA reports PLUGGYAPE cyberattacks on defense forces January 14, 2026

IT Security News Hourly Summary 2026-01-14 21h : 6 posts January 14, 2026

The multibillion-dollar AI security problem enterprises can’t ignore January 14, 2026

Researchers Null-Route Over 550 Kimwolf and Aisuru Botnet Command Servers January 14, 2026

The multi-billion AI security problem enterprises can’t ignore January 14, 2026

Hacking Wheelchairs over Bluetooth January 14, 2026

New China Linked VoidLink Linux Malware Targets Major Cloud Providers January 14, 2026

Verizon Outage Knocks Out US Mobile Service, Including Some 911 Calls January 14, 2026

Infection repeatedly adds scheduled tasks and increases traffic to the same C2 domain, (Wed, Jan 14th) January 14, 2026

Structure and reliability in e-commerce platforms January 14, 2026

Aikido Security Raises $60 Million at $1 Billion Valuation January 14, 2026

Living Security Adds AI Engine to Surface Risky End User Behavior January 14, 2026

Microsoft named a Leader in IDC MarketScape for Unified AI Governance Platforms January 14, 2026

Copyright © 2026 IT Security News. All Rights Reserved. The Magazine Basic Theme by bavotasan.com.

Manage Consent

To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.

Functional Functional Always active

The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.

Preferences Preferences

The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.

Statistics Statistics

The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.

Marketing Marketing

The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.

Manage options

Manage services

Manage {vendor_count} vendors

Read more about these purposes

View preferences

{title}

{title}

{title}