CyberVeille.chJan 20
📢 PoC publié pour une faille critique FortiSIEM (CVE-2025-64155) permettant une exécution de code à distance
📝 Selon Help Net Security, un **code de preuve de concept (P...
📖 cyberveille : https://cyberveille.ch/posts/2026-01-20-poc-publie-pour-une-faille-critique-fortisiem-cve-2025-64155-permettant-une-execution-de-code-a-distance/
🌐 source : https://www.helpnetsecurity.com/2026/01/15/fortisiem-vulnerability-cve-2025-64155-poc-exploit/
#CVE_2025_64155 #FortiSIEM #Cyberveille
PoC publié pour une faille critique FortiSIEM (CVE-2025-64155) permettant une exécution de code à distance

Selon Help Net Security, un code de preuve de concept (PoC) a été rendu public pour la vulnérabilité critique CVE-2025-64155 affectant la plateforme Fortinet FortiSIEM, ce qui accélère l’urgence de corriger les déploiements exposés. ⚠️ La faille permet à des attaquants non authentifiés d’exécuter du code ou des commandes non autorisés à distance via des requêtes TCP spécialement forgées. Elle cible le service phMonitor, décrit comme le « système nerveux » du SIEM, permettant d’écrire du code arbitraire dans un fichier qui est ensuite exécuté.

CyberVeille
PressMind LabsJan 19

FortiSIEM pod ostrzałem – krytyczna luka w zabezpieczeniach odkryta

Czy narzędzie, które ma patrzeć wszystkim na ręce, może samo stać się najsłabszym ogniwem? FortiSIEM – centrum nerwowe wielu SOC-ów – właśnie dostało strzał prosto w mechanizm zaufania.

Czytaj dalej:
https://pressmind.org/fortisiem-pod-ostrzalem-krytyczna-luka-w-zabezpieczeniach-odkryta/

#PressMindLabs #cve202564155 #fortinet #fortisiem #fortiweb #phmonitor

The New OilJan 19

Hackers now exploiting critical #Fortinet #FortiSIEM flaw in attacks

https://www.bleepingcomputer.com/news/security/hackers-now-exploiting-critical-fortinet-fortisiem-vulnerability-in-attacks/

#cybersecurity

Hackers now exploiting critical Fortinet FortiSIEM flaw in attacks

Attackers are now exploiting a critical Fortinet FortiSIEM vulnerability with publicly available proof-of-concept exploit code.

BleepingComputer
Rene RobichaudJan 16

Critical flaw in Fortinet FortiSIEM targeted in exploitation threat
https://www.cybersecuritydive.com/news/critical-flaw-in-fortinet-fortisiem-targeted-in-exploitation-threat/809863/

#Infosec #Security #Cybersecurity #CeptBiro #CriticalFlaw #Fortinet #FortiSIEM

Critical flaw in Fortinet FortiSIEM targeted in exploitation threat

Researchers originally disclosed the vulnerability in August 2025, however, a proof of concept and an advisory were just released.

Cybersecurity Dive
raptor Jan 16

CVE-2025-64155: Three Years of Remotely Rooting the #Fortinet #FortiSIEM

https://horizon3.ai/attack-research/disclosures/cve-2025-64155-three-years-of-remotely-rooting-the-fortinet-fortisiem/

CVE-2025-64155: 3 Years of Remotely Rooting the FortiSIEM

Horizon3.ai details CVE-2025-64155, revealing chained FortiSIEM vulnerabilities enabling remote code execution and root access, analysis of the root cause, and indicators of compromise.

Horizon3.ai
The New OilJan 15

Exploit code public for critical #FortiSIEM command injection flaw

https://www.bleepingcomputer.com/news/security/exploit-code-public-for-critical-fortisiem-command-injection-flaw/

#cybersecurity #Fortinet

Exploit code public for critical FortiSIEM command injection flaw

Technical details and a public exploit have been published for a critical vulnerability affecting Fortinet's Security Information and Event Management (SIEM) solution that could be leveraged by a remote, unauthenticated attacker to execute commands or code.

BleepingComputer
securityaffairsJan 14
#Fortinet fixed two critical flaws in #FortiFone and #FortiSIEM
https://securityaffairs.com/186902/uncategorized/fortinet-fixed-two-critical-flaws-in-fortifone-and-fortisiem.html
#securityaffairs #hacking
Fortinet fixed two critical flaws in FortiFone and FortiSIEM

Fortinet fixed six security flaws, including two critical bugs in FortiFone and FortiSIEM that attackers could exploit without authentication.

Security Affairs
raptor Aug 27, 2025

Should #Security Solutions Be Secure? Maybe We're All Wrong - #Fortinet #FortiSIEM Pre-Auth Command Injection (CVE-2025-25256)

https://labs.watchtowr.com/should-security-solutions-be-secure-maybe-were-all-wrong-fortinet-fortisiem-pre-auth-command-injection-cve-2025-25256/

Should Security Solutions Be Secure? Maybe We're All Wrong - Fortinet FortiSIEM Pre-Auth Command Injection (CVE-2025-25256)

It’s Friday, but we’re here today with unscheduled content - pushing our previously scheduled shenanigans to next week. Fortinet is no stranger to the watchTowr Labs research team. Today we’re looking at CVE-2025-25256 - a pre-authentication command injection in FortiSIEM that lets an attacker compromise an organization’

watchTowr Labs
CyberVeille.chAug 17, 2025
📢 CVE-2025-25256 : injection de commandes pré-auth critique dans Fortinet FortiSIEM (5.4–7.3.1)
📝 Selon WatchTowr Labs, une vulnérabi...
📖 cyberveille : https://cyberveille.ch/posts/2025-08-17-cve-2025-25256-injection-de-commandes-pre-auth-critique-dans-fortinet-fortisiem-5-4-7-3-1/
🌐 source : https://labs.watchtowr.com/should-security-solutions-be-secure-maybe-were-all-wrong-fortinet-fortisiem-pre-auth-command-injection-cve-2025-25256/
#CVE_2025_25256 #FortiSIEM #Cyberveille
CyberVeille.chAug 14, 2025
📢 Fortinet corrige une faille critique dans FortiSIEM (CVE-2025-25256) permettant une exécution de code à distance
📝 Selon Arctic Wolf, Fortinet a publié des correctifs pour une **vulnérabilité critique (...
📖 cyberveille : https://cyberveille.ch/posts/2025-08-14-fortinet-corrige-une-faille-critique-dans-fortisiem-cve-2025-25256-permettant-une-execution-de-code-a-distance/
🌐 source : https://arcticwolf.com/resources/blog/cve-2025-25256/
#CVE_2025_25256 #FortiSIEM #Cyberveille