Fortinet Product Security Update Advisory (CVE-2025-64155)

Jan 15 2026

Overview

We have released security updates to fix vulnerabilities in Fortinet products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-64155

FortiSIEM 7.4 Version: 7.4.0
FortiSIEM 7.3 Versions: 7.3.0 and earlier and 7.3.4 and earlier
FortiSIEM 7.2 Versions: 7.2.0 or later and 7.2.6 or earlier
FortiSIEM 7.1 Versions: 7.1.0 or later and 71.8 or earlier
FortiSIEM 7.0 Versions: 7.0.0 or later and 7.0.4 or earlier
FortiSIEM 6.7 versions: 6.7.0 or later and 6.7.10 or later

Resolved Vulnerabilities

Unauthenticated remote command injection vulnerability in Fortinet FortiSIEM (CVE-2025-64155)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-64155

FortiSIEM 7.4 version: 7.4.1 and later
FortiSIEM 7.3 version: 7.3.5 and later
FortiSIEM 7.2 Version: 7.2.7 and later
FortiSIEM 7.1 Version: 7.1.9 and later
FortiSIEM 7.0 Version: Migrating to a Revised Release
FortiSIEM 6.7 Versions: Migrating to a Revised Release

References

[1] Unauthenticated remote command injection
https://fortiguard.fortinet.com/psirt/FG-IR-25-772

Fortinet Product Security Update Advisory (CVE-2025-64155)

ManageEngine (PAM360, Password Manager Pro, and others) Family January 2026 Security Update Advisory

GitLab Product Security Update Advisory (CVE-2025-11224)

Tags:

ManageEngine (PAM360, Password Manager Pro, and others) Family January 2026 Security Update Advisory

GitLab Product Security Update Advisory (CVE-2025-11224)