Mastodawn

📢 PoC publié pour une faille critique FortiSIEM (CVE-2025-64155) permettant une exécution de code à distance
📝 Selon Help Net Security, un **code de preuve de concept (P...
📖 cyberveille : https://cyberveille.ch/posts/2026-01-20-poc-publie-pour-une-faille-critique-fortisiem-cve-2025-64155-permettant-une-execution-de-code-a-distance/
🌐 source : https://www.helpnetsecurity.com/2026/01/15/fortisiem-vulnerability-cve-2025-64155-poc-exploit/
#CVE_2025_64155 #FortiSIEM #Cyberveille

PoC publié pour une faille critique FortiSIEM (CVE-2025-64155) permettant une exécution de code à distance

Selon Help Net Security, un code de preuve de concept (PoC) a été rendu public pour la vulnérabilité critique CVE-2025-64155 affectant la plateforme Fortinet FortiSIEM, ce qui accélère l’urgence de corriger les déploiements exposés. ⚠️ La faille permet à des attaquants non authentifiés d’exécuter du code ou des commandes non autorisés à distance via des requêtes TCP spécialement forgées. Elle cible le service phMonitor, décrit comme le « système nerveux » du SIEM, permettant d’écrire du code arbitraire dans un fichier qui est ensuite exécuté.

CyberVeille

PressMind Labs Jan 19

FortiSIEM pod ostrzałem – krytyczna luka w zabezpieczeniach odkryta

Czy narzędzie, które ma patrzeć wszystkim na ręce, może samo stać się najsłabszym ogniwem? FortiSIEM – centrum nerwowe wielu SOC-ów – właśnie dostało strzał prosto w mechanizm zaufania.

Czytaj dalej:
https://pressmind.org/fortisiem-pod-ostrzalem-krytyczna-luka-w-zabezpieczeniach-odkryta/

#PressMindLabs #cve202564155 #fortinet #fortisiem #fortiweb #phmonitor

Rene Robichaud Jan 16

Critical flaw in Fortinet FortiSIEM targeted in exploitation threat
https://www.cybersecuritydive.com/news/critical-flaw-in-fortinet-fortisiem-targeted-in-exploitation-threat/809863/

#Infosec #Security #Cybersecurity #CeptBiro #CriticalFlaw #Fortinet #FortiSIEM

Critical flaw in Fortinet FortiSIEM targeted in exploitation threat

Researchers originally disclosed the vulnerability in August 2025, however, a proof of concept and an advisory were just released.

Cybersecurity Dive

raptor Jan 16

CVE-2025-64155: Three Years of Remotely Rooting the #Fortinet #FortiSIEM

https://horizon3.ai/attack-research/disclosures/cve-2025-64155-three-years-of-remotely-rooting-the-fortinet-fortisiem/

CVE-2025-64155: 3 Years of Remotely Rooting the FortiSIEM

Horizon3.ai details CVE-2025-64155, revealing chained FortiSIEM vulnerabilities enabling remote code execution and root access, analysis of the root cause, and indicators of compromise.

Horizon3.ai

securityaffairs Jan 14

#Fortinet fixed two critical flaws in #FortiFone and #FortiSIEM
https://securityaffairs.com/186902/uncategorized/fortinet-fixed-two-critical-flaws-in-fortifone-and-fortisiem.html
#securityaffairs #hacking

Fortinet fixed two critical flaws in FortiFone and FortiSIEM

Fortinet fixed six security flaws, including two critical bugs in FortiFone and FortiSIEM that attackers could exploit without authentication.

Security Affairs

raptor Aug 27, 2025

Should #Security Solutions Be Secure? Maybe We're All Wrong - #Fortinet #FortiSIEM Pre-Auth Command Injection (CVE-2025-25256)

https://labs.watchtowr.com/should-security-solutions-be-secure-maybe-were-all-wrong-fortinet-fortisiem-pre-auth-command-injection-cve-2025-25256/

Should Security Solutions Be Secure? Maybe We're All Wrong - Fortinet FortiSIEM Pre-Auth Command Injection (CVE-2025-25256)

It’s Friday, but we’re here today with unscheduled content - pushing our previously scheduled shenanigans to next week. Fortinet is no stranger to the watchTowr Labs research team. Today we’re looking at CVE-2025-25256 - a pre-authentication command injection in FortiSIEM that lets an attacker compromise an organization’

watchTowr Labs

CyberVeille.ch Aug 17, 2025

📢 CVE-2025-25256 : injection de commandes pré-auth critique dans Fortinet FortiSIEM (5.4–7.3.1)
📝 Selon WatchTowr Labs, une vulnérabi...
📖 cyberveille : https://cyberveille.ch/posts/2025-08-17-cve-2025-25256-injection-de-commandes-pre-auth-critique-dans-fortinet-fortisiem-5-4-7-3-1/
🌐 source : https://labs.watchtowr.com/should-security-solutions-be-secure-maybe-were-all-wrong-fortinet-fortisiem-pre-auth-command-injection-cve-2025-25256/
#CVE_2025_25256 #FortiSIEM #Cyberveille

CyberVeille.ch Aug 14, 2025

📢 Fortinet corrige une faille critique dans FortiSIEM (CVE-2025-25256) permettant une exécution de code à distance
📝 Selon Arctic Wolf, Fortinet a publié des correctifs pour une **vulnérabilité critique (...
📖 cyberveille : https://cyberveille.ch/posts/2025-08-14-fortinet-corrige-une-faille-critique-dans-fortisiem-cve-2025-25256-permettant-une-execution-de-code-a-distance/
🌐 source : https://arcticwolf.com/resources/blog/cve-2025-25256/
#CVE_2025_25256 #FortiSIEM #Cyberveille

CyberVeille.ch Aug 14, 2025

📢 Fortinet alerte sur une faille d’injection de commandes à distance dans FortiSIEM avec code d’exploit circulant
📝 Selon BleepingComputer, Fortin...
📖 cyberveille : https://cyberveille.ch/posts/2025-08-14-fortinet-alerte-sur-une-faille-dinjection-de-commandes-a-distance-dans-fortisiem-avec-code-dexploit-circulant/
🌐 source : https://www.bleepingcomputer.com/news/security/fortinet-warns-of-fortisiem-pre-auth-rce-flaw-with-exploit-in-the-wild/
#FortiSIEM #Fortinet #Cyberveille

redoracle Aug 13, 2025

Urgent FortiSIEM Vulnerability Alert Critical CVE-2025-25256 poses severe risk with exploit code in the wild. Act now! #FortiSIEM #Cybersecurity #Vulnerability https://redoracle.com/News/Urgent-FortiSIEM-Vulnerability-Alert.html

Urgent FortiSIEM Vulnerability Alert

Image Introduction Fortinet has issued a warning about a critical vulnerability in FortiSIEM, known as CVE-2025-25256. This vulnerability poses a severe risk to organizations us...

RedOracle