CVE-2025-25256

Vulnerability Description

An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiSIEM version 7.3.0 through 7.3.1, 7.2.0 through 7.2.5, 7.1.0 through 7.1.7, 7.0.0 through 7.0.3 and before 6.7.9 allows an unauthenticated attacker to execute unauthorized code or commands via crafted CLI requests.

Vulnerability Details

Published Date

August 12, 2025

Last Modified

August 15, 2025

Source

NVD

CVE-2025-25256

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment