CVE-2025-58034: Fortinet FortiWeb OS Command Injection Vulnerability.
Fortinet FortiWeb OS Command Injection Vulnerability. Fortinet FortiWeb contains an OS command Injection vulnerability that may allow an authenticated attacker to execute unauthorized code on the underlying system via crafted HTTP requests or CLI commands.
- CISA KEV-listed (remediation due 2025-11-25)
- EPSS 45.7% (97.7% percentile)