EUVD-2025-24462

🗓️ 12 Aug 2025 18:59:14Reported by EUVDType

FortiSIEM OS Command Injection enables unauthenticated code execution via crafted CLI

Reporter	Title	Published	Views	Family All 18
GithubExploit	Exploit for OS Command Injection in Fortinet Fortisiem	15 Aug 202514:31	–	githubexploit
GithubExploit	Exploit for OS Command Injection in Fortinet Fortisiem	21 Aug 202509:09	–	githubexploit
ATTACKERKB	CVE-2025-25256	12 Aug 202518:59	–	attackerkb
Circl	CVE-2025-25256	12 Aug 202522:09	–	circl
CNNVD	Fortinet FortiSIEM 操作系统命令注入漏洞	12 Aug 202500:00	–	cnnvd
CNVD	Fortinet FortiSIEM Operating System Command Injection Vulnerability (CNVD-2025-21176)	20 Aug 202500:00	–	cnvd
CVE	CVE-2025-25256	12 Aug 202518:59	–	cve
Cvelist	CVE-2025-25256	12 Aug 202518:59	–	cvelist
Tenable Nessus	Fortinet FortiSIEM OS Command Injection (FG-IR-25-152)	13 Aug 202500:00	–	nessus
NCSC	Vulnerabilities fixed in Fortinet products	13 Aug 202509:35	–	ncsc

[
  {
    "enisaIdVendor": [
      {
        "id": "426df788-9d13-3fb8-83f9-bccb3df3d34a",
        "vendor": {
          "name": "Fortinet"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "2d3245e4-a170-3db8-be6f-9ae8051218fd",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "7.3.0 ≤7.3.1"
      },
      {
        "id": "33abebc7-9a24-3477-81bd-b970080cdeb9",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "6.7.0 ≤6.7.9"
      },
      {
        "id": "36a7cd50-8be0-330c-8b9d-94bbb67a010b",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "6.1.0 ≤6.1.2"
      },
      {
        "id": "4cff5c24-d3bb-3309-80ff-88e87883e156",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "7.2.0 ≤7.2.5"
      },
      {
        "id": "5a2464f8-c5d9-3024-ac32-efb6dd1239e2",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "7.0.0 ≤7.0.3"
      },
      {
        "id": "8800f1b0-cd7a-3a4a-bbbe-6494034b3dd4",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "5.4.0"
      },
      {
        "id": "9a73580b-c1b3-3901-ba94-765444deb754",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "6.5.0 ≤6.5.3"
      },
      {
        "id": "9f286b28-b5fb-3292-9756-cba01a7e4fcc",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "6.6.0 ≤6.6.5"
      },
      {
        "id": "9ff791a5-9b6e-3251-ae5f-a572ef0db250",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "7.1.0 ≤7.1.7"
      },
      {
        "id": "ac1bb129-e5a6-3443-aede-d9878d76d8e6",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "6.3.0 ≤6.3.3"
      },
      {
        "id": "b60025b3-23b2-366f-85fa-6007687be2c6",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "6.2.0 ≤6.2.1"
      },
      {
        "id": "e2c7862c-9420-3167-b0dc-0cb787c4b297",
        "product": {
          "name": "FortiSIEM"
        },
        "product_version": "6.4.0 ≤6.4.4"
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.fortinet.com/psirt/FG-IR-25-152

16 Aug 2025 03:55Current

8.1High risk

Vulners AI Score8.1

CVSS 3.19.8

EPSS0.51322

SSVC