Security Boulevard

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Command Injection Vulnerability

Exploit code has been published for CVE-2025-64155, a critical command injection vulnerability affecting Fortinet FortiSIEM ...
Computer Weekly

Fortinet vulnerabilities prompt pre-holiday warnings

Two recently disclosed vulnerabilities discovered in Fortinet’s product portfolio have prompted a pre-holiday warning for defenders after being added to the Known Exploited Vulnerabilities (KEV) ...
Dark Reading

Critical Fortinet Flaws Under Active Attack

The US Cybersecurity and Infrastructure Security Agency (CISA) has added a recently disclosed security flaw affecting multiple Fortinet network security and management platforms to its known exploited ...
Bleeping Computer

Fortinet discloses second firewall auth bypass patched in January

Update 2/11/25 07:32 PM ET: After publishing our story, Fortinet has informed us that the new CVE-2025-24472 flaw added to FG-IR-24-535 today is not a zero-day and was already fixed in January.