CVE-2025-64155

9.8CRITICAL

An improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSIEM 7.4.0, FortiSIEM 7.3.0 through 7.3.4, FortiSIEM 7.1.0 through 7.1.8, F

게시됨: 1/13/2026업데이트됨: 1/14/2026
NVD에서 보기MITRE에서 보기

설명

An improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSIEM 7.4.0, FortiSIEM 7.3.0 through 7.3.4, FortiSIEM 7.1.0 through 7.1.8, FortiSIEM 7.0.0 through 7.0.4, FortiSIEM 6.7.0 through 6.7.10 may allow an attacker to execute unauthorized code or commands via crafted TCP requests.

AI 분석AI 기반

영향받는 제품

fortinetfortisiem
fortinetfortisiem
fortinetfortisiem
fortinetfortisiem
7.4.0

참조