Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Vulnerabilities

Fortinet Patches Critical Vulnerabilities in FortiFone, FortiSIEM

Exploitable without authentication, the two security defects could lead to configuration leak and code execution.

Fortinet vulnerability

Fortinet on Tuesday announced patches for six vulnerabilities across its products, including two critical-severity bugs in FortiFone and FortiSIEM.

The most severe of these flaws is CVE-2025-64155 (CVSS score of 9.4), an OS command injection issue in FortiSIEM that could be exploited by unauthenticated attackers for code and command execution.

Exploitable via crafted TCP requests, the security defect was resolved in FortiSIEM versions 7.1.9, 7.2.7, 7.3.5, and 7.4.1.

According to Fortinet, only the Super and Worker nodes are affected, but not Collector nodes. The risk associated with the weakness can be mitigated by limiting access to the phMonitor port (7900).

The critical-severity FortiFone bug, tracked as CVE-2025-47855 (CVSS score of 9.3), impacts the appliance’s web portal and could be exploited without authentication to leak device configuration via crafted HTTP or HTTPS requests.

The vulnerability was resolved with the release of FortiFone versions 3.0.24 and 7.0.2.

Advertisement. Scroll to continue reading.

On Tuesday, Fortinet also released fixes for CVE-2025-25249 (CVSS score of 7.4), a high-severity flaw in the cw_acd daemon component of FortiOS and FortiSwitchManager.

Described as a heap-based buffer overflow issue, the defect could lead to remote, unauthenticated code or command execution and can be exploited via crafted requests.

Patches for the bug were included in FortiOS versions 7.0.18, 7.2.12, 7.4.9, and 7.6.4, FortiSASE version 25.2.c, and FortiSwitchManager versions 7.0.6 and 7.2.7. Fortinet will also include the fixes in the upcoming FortiOS version 6.4.17.

As a workaround, Fortinet recommends removing ‘fabric’ access for each appliance interface, blocking access to the capwap daemon, or blocking CAPWAP-CONTROL access to port 5246-5249 for all interfaces with the ‘fabric’ service.

Fortinet on Tuesday also released patches for two medium-severity vulnerabilities in FortiClientEMS and FortiVoice, and for a low-severity bug in FortiSandbox.

The company makes no mention of any of these security defects being exploited in the wild, but users are advised to update their appliances as soon as possible. Additional information can be found on Fortinet’s PSIRT advisories page.

Related: Adobe Patches Critical Apache Tika Bug in ColdFusion

Related: Fortinet Warns of New Attacks Exploiting Old Vulnerability

Related: In-the-Wild Exploitation of Fresh Fortinet Flaws Begins

Related: Fortinet Patches Critical Authentication Bypass Vulnerabilities

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing for the latest cybersecurity threats, trends, and expert insights.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this live webinar as we break down why email-layer defenses alone can't keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more.

Register

This year's summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments.

Register

People on the Move

F5 has appointed Cathy Peterman as Chief People Officer.

Sean Murphy has joined F5 as a Field Chief Information Security Officer - North America.

CodeHunter has appointed Stephen McCarney as Chief Strategy Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.