Fortinet has released patches for a critical OS command injection vulnerability (CVE-2025-25256) in FortiSIEM, after practical exploit code surfaced in the wild. About CVE-2025-25256 FortiSIEM is a security information and event management platform used by organizations to collect, correlate and analyze logs, events, and alerts from across an organization’s IT and security infrastructure, to help detect threats and investigate incidents. CVE-2025-25256 is caused by improper neutralization of special elements and may allow unauthenticated attackers to … More
The post Fortinet warns about FortiSIEM vulnerability with in-the-wild exploit code (CVE-2025-25256) appeared first on Help Net Security.
This article has been indexed from Help Net Security
Read the original article: