Introduction

Fortinet has issued a warning about a critical vulnerability in FortiSIEM, known as CVE-2025-25256. This vulnerability poses a severe risk to organizations using affected versions of FortiSIEM, allowing unauthenticated attackers to execute unauthorized commands through specially crafted CLI requests. The presence of exploit code in the wild further complicates detection efforts, emphasizing the urgency of addressing this issue.