{"id":179015,"date":"2026-01-16T12:00:00","date_gmt":"2026-01-16T17:00:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/01\/16\/critical-flaw-in-fortinet-fortisiem-targeted-in-exploitation-threat\/"},"modified":"2026-01-16T12:40:08","modified_gmt":"2026-01-16T17:40:08","slug":"critical-flaw-in-fortinet-fortisiem-targeted-in-exploitation-threat","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/01\/16\/critical-flaw-in-fortinet-fortisiem-targeted-in-exploitation-threat\/","title":{"rendered":"Critical flaw in Fortinet FortiSIEM targeted in exploitation threat"},"content":{"rendered":"<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/critical-flaw-in-fortinet-fortisiem-targeted-in-exploitation-threat\/809863\/\">Critical flaw in Fortinet FortiSIEM targeted in exploitation threat<\/a><\/p>\n<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/critical-flaw-in-fortinet-fortisiem-targeted-in-exploitation-threat\/809863\/\">https:\/\/www.cybersecuritydive.com\/news\/critical-flaw-in-fortinet-fortisiem-targeted-in-exploitation-threat\/809863\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-01-16 12:00:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.cybersecuritydive.com\">www.cybersecuritydive.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>A critical flaw in Fortinet FortiSIEM is under exploitation from threat groups, just days after release of a proof of concept.\u00a0<br \/>\nThe vulnerability, tracked as CVE-2025-64155, involves an improper neutralization of special elements used in an operating system. An attacker would be able to execute unauthorized commands on a system.\u00a0<br \/>\nFortinet released an advisory on the flaw on Tuesday, following disclosure from researchers at Horizon3.ai. Researchers at Defused reported exploitation attempts being picked up by their honeypots.\u00a0<\/p>\n<p>Researchers said the flaw was the most recent of multiple vulnerabilities found in the phMonitor of FortiSIEM in recent years. The flaws were also found \u201cwithin the same high-level function that dictates which storage mechanism was used,\u201d which is the NFS or elastic, according to Zach Hanley, chief attack engineer at Horizon3.ai.<br \/>\nThe prior vulnerabilities were tracked as CVE-2023-34992 and CVE-2024-23108.\u00a0<br \/>\nFortinet has taken a number of measures to remediate these issues, but they appear to have fallen short.\u00a0<br \/>\n\u201cWhile Fortinet has taken care to harden the attack surface against these types of bugs, their hardening has largely focused on the directly vulnerable components \u2014 not adjacent attack surfaces,\u201d Hanley said.\u00a0<br \/>\nThe flaws did not officially land on the Cybersecurity and Infrastructure Security Agency\u2019s Known Exploited Vulnerabilities catalog, but the threat group Black Basta referenced these flaws in uncovered chat logs, according to researchers.\u00a0<br \/>\nFortinet officials were not immediately available for comment.<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Critical flaw in Fortinet FortiSIEM targeted in exploitation threat https:\/\/www.cybersecuritydive.com\/news\/critical-flaw-in-fortinet-fortisiem-targeted-in-exploitation-threat\/809863\/ Publish Date: 2026-01-16 12:00:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":179016,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/imgproxy.divecdn.com\/9O9oSKGJ5HJDOg9H2veuTLz8-hIOnTRDGZgjv-DYOKk\/g:nowe:0:1064\/c:5197:2936\/rs:fit:770:435\/Z3M6Ly9kaXZlc2l0ZS1zdG9yYWdlL2RpdmVpbWFnZS9HZXR0eUltYWdlcy0xMzcwMjMzMzIwLmpwZw==.webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24,27],"class_list":["post-179015","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/179015"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=179015"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/179015\/revisions"}],"predecessor-version":[{"id":179017,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/179015\/revisions\/179017"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/179016"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=179015"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=179015"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=179015"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}