CVE-2025-58034

Name of the Vulnerable Software and Affected Versions Fortinet FortiWeb versions 7.0.0 through 8.0.1 Fortinet FortiWeb versions 7.2.0 through 7.2.11 Fortinet FortiWeb versions 7.4.0 through 7.4.10 Fortinet FortiWeb versions 7.6.0 through 7.6.5

Description Fortinet FortiWeb is affected by an OS Command Injection vulnerability. An authenticated attacker can execute unauthorized code on the underlying system via crafted HTTP requests or CLI commands. This vulnerability is actively exploited in the wild and has been added to CISA’s Known Exploited Vulnerabilities (KEV) Catalog. The vulnerability allows an attacker to execute commands with system-level privileges, potentially leading to data breaches, ransomware attacks, and significant financial losses. Approximately 1.5k instances are exposed. The vulnerability is related to the improper neutralization of special elements used in OS commands.

Recommendations Fortinet FortiWeb versions 7.0.0 through 7.0.11: Apply the latest available patch. Fortinet FortiWeb versions 7.2.0 through 7.2.11: Apply the latest available patch. Fortinet FortiWeb versions 7.4.0 through 7.4.10: Apply the latest available patch. Fortinet FortiWeb versions 7.6.0 through 7.6.5: Apply the latest available patch. Fortinet FortiWeb versions 8.0.0 through 8.0.1: Apply the latest available patch.