CISA has mandated U.S. federal agencies to fix a critical vulnerability in Fortinet’s FortiWeb firewall within a week to prevent exploitation. The OS command injection flaw, tracked as CVE-2025-58034, allows authenticated attackers to execute malicious code, posing significant security risks. #Fortinet #FortiWeb #CVE-2025-58034
Keypoints
- The vulnerability CVE-2025-58034 affects Fortinet’s FortiWeb web application firewall.
- Authenticated threat actors can exploit the flaw via crafted HTTP requests or CLI commands.
- CISA has added the vulnerability to its Known Exploited Vulnerabilities Catalog and ordered urgent patching.
- A second related flaw, CVE-2025-64446, was also exploited in zero-day attacks and required rapid patching.
- Fortinet vulnerabilities have been linked to cyber espionage and ransomware campaigns, including Chinese hacking groups.