Exploit for OS Command Injection in Fortinet Fortisiem_81ACD034-9611-50B0-BFA9-0BB1E95FBF84

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

# CVE-2025-25256 - Fortinet FortiSIEM Vulnerability

## Overview

This repository contains a proof-of-concept (POC) for a critical unauthenticated command injection security flaw (CVE-2025-25256) was recently identified in Fortinet FortiSIEM. The issue allows an attacker to remotely run commands on the system without logging in. The problem is tied to the phMonitor that listens on port 7900 and has been rated **9.8/10 in severity**.

## Impacted Versions

* FortiSIEM 6.1 – 6.6 (all versions)
* FortiSIEM 6.7.0 – 6.7.9
* FortiSIEM 7.0.0 – 7.0.3
* FortiSIEM 7.1.0 – 7.1.7
* FortiSIEM 7.2.0 – 7.2.5
* FortiSIEM 7.3.0 – 7.3.1

Fortinet has released fixed versions (7.3.2 and 7.4.0).

## Recommended Action

If you use FortiSIEM, you should ensure systems are upgraded to a patched version as soon as possible. Until then, limiting access to the affected service can reduce risk.

## Usage

```
python exploit.py -ip {ip} -port {port} -command "{cmd}"
```

Read thru the file for more info.

## Exploit
[Link](https://tinyurl.com/5n8hrhjm)

Visit Original Source

Basic Information

ID 81ACD034-9611-50B0-BFA9-0BB1E95FBF84

Published Aug 21, 2025 at 09:09

Modified Aug 21, 2025 at 09:50

{
    "lastseen": "2025-08-24T03:00:54",
    "description": "# CVE-2025-25256 - Fortinet FortiSIEM Vulnerability\n\n## Overview\n\nThis repository contains a proof-of-concept (POC) for a critical unauthenticated command injection security flaw (CVE-2025-25256) was recently identified in Fortinet FortiSIEM. The issue allows an attacker to remotely run commands on the system without logging in. The problem is tied to the phMonitor that listens on port 7900 and has been rated **9.8/10 in severity**.\n\n## Impacted Versions\n\n* FortiSIEM 6.1 \u2013 6.6 (all versions)\n* FortiSIEM 6.7.0 \u2013 6.7.9\n* FortiSIEM 7.0.0 \u2013 7.0.3\n* FortiSIEM 7.1.0 \u2013 7.1.7\n* FortiSIEM 7.2.0 \u2013 7.2.5\n* FortiSIEM 7.3.0 \u2013 7.3.1\n\nFortinet has released fixed versions (7.3.2 and 7.4.0).\n\n## Recommended Action\n\nIf you use FortiSIEM, you should ensure systems are upgraded to a patched version as soon as possible. Until then, limiting access to the affected service can reduce risk.\n\n## Usage\n\n```\npython exploit.py -ip {ip} -port {port} -command \"{cmd}\"\n```\n\nRead thru the file for more info.\n\n\n\n## Exploit\n[Link](https://tinyurl.com/5n8hrhjm)\n\n\n",
    "published": "2025-08-21T09:09:49",
    "modified": "2025-08-21T09:50:42",
    "type": "githubexploit",
    "title": "Exploit for OS Command Injection in Fortinet Fortisiem",
    "source": "",
    "references": "",
    "id": "81ACD034-9611-50B0-BFA9-0BB1E95FBF84",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [
        "CVE-2025-25256"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://github.com/JMS-Security/CVE-2025-25256-PoC",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply