CVE-2025-64155:
Critical OS command injection vulnerability in Fortinet FortiSIEM allows remote code execution without authentication.
Score
A numerical rating that indicates how dangerous this vulnerability is.
9.8Critical- Published Date:Jan 13, 2026
- CISA KEV Date:*No Data*
- Industries Affected:20
Threat Predictions
- EPSS Score:0.0
- EPSS Percentile:13%
Exploitability
- Score:3.9
- Attack Vector:NETWORK
- Attack Complexity:LOW
- Privileges Required:NONE
- User Interaction:NONE
- Scope:UNCHANGED
Impact
- Score:5.9
- Confidentiality Impact:HIGH
- Integrity Impact:HIGH
- Availability Impact:HIGH
Description Preview
Critical OS command injection vulnerability in Fortinet FortiSIEM allows remote code execution without authentication.
Overview
The vulnerability in Fortinet FortiSIEM allows an attacker to exploit an OS command injection flaw to execute arbitrary commands on the affected system. This vulnerability is particularly dangerous due to its network-based attack vector, low attack complexity, and the fact that it requires no privileges or user interaction to exploit. The potential impact of successful exploitation includes complete compromise of system confidentiality, integrity, and availability. Given the critical nature of FortiSIEM in network security monitoring and management, this vulnerability poses a significant risk to affected organizations.
Remediation
- To mitigate the risk posed by CVE-2025-64155, organizations using affected versions of Fortinet FortiSIEM should take the following steps:
- 1. Update to the latest version of FortiSIEM as soon as it becomes available from Fortinet.
- 2. Implement network segmentation to limit access to FortiSIEM systems.
- 3. Monitor for any suspicious activity or unauthorized access attempts targeting FortiSIEM instances.
- 4. Apply the principle of least privilege to all accounts and services interacting with FortiSIEM.
- 5. Regularly review and update security configurations and access controls for FortiSIEM deployments.
- It is crucial to stay informed about any additional guidance or patches released by Fortinet regarding this vulnerability.
References
Industries Affected
Below is a list of industries most commonly impacted or potentially at risk based on intelligence.
