Fortinet has released updates to fix a critical security flaw impacting FortiSIEM that could allow an unauthenticated attacker to achieve code execution on susceptible instances.
The operating system (OS) injection vulnerability, tracked as CVE-2025-64155, is rated 9.4 out of 10.0 on the CVSS scoring system.
„An improper neutralization of special elements used in an OS command (‚OS command
https://thehackernews.com/2026/01/fortinet-fixes-critical-fortisiem-flaw.html