Fortinet & Ivanti’s Patch Tuesday: A Comedy of Critical Vulnerabilities!

Fortinet has released 14 new security advisories for August 2025, including a critical FortiSIEM flaw, CVE-2025-25256, allowing remote code execution. While no malicious attacks have been reported, a PoC exploit is circulating. Meanwhile, Ivanti has addressed high-severity vulnerabilities in its products. Users are urged to patch swiftly.

3P
Published: August 13, 2025 9:21 amAdded: August 13, 2025 at 2:59 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Fortinet and Ivanti have finally found a way to spice up your summer: by giving you a laundry list of vulnerabilities to patch! Who needs a beach vacation when you can spend your August playing ‘Find and Fix the Exploit’? Just remember, nothing screams ‘fun in the sun’ like unauthenticated remote code execution, am I right?

Key Points:

  • Fortinet has released 14 new advisories, including a critical flaw (CVE-2025-25256) in FortiSIEM.
  • Two high-severity vulnerabilities are affecting FortiWeb and multiple Fortinet products.
  • Ivanti’s patches address high-severity issues in Ivanti Avalanche.
  • Ivanti also fixes medium-severity vulnerabilities in vADC and Connect Secure products.
  • Users are urged to install these patches ASAP to avoid potential exploits.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?