A newly disclosed vulnerability in FortiOS, tracked as CWE-684, allows local authenticated attackers to execute arbitrary system commands via malicious CLI inputs across multiple versions, including 6.4 to 7.6. This flaw raises significant security risks for organizations, enabling potential privilege escalation, unauthorized modifications, and persistent malware installation. Fortinet has advised immediate upgrades to patched versions to mitigate the threat and protect enterprise environments. Given FortiOS’s widespread use, the vulnerability underscores a critical need for robust cybersecurity measures in network defenses, highlighting the importance of prompt remediation to maintain operational integrity and data security in increasingly digital infrastructures.