Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild
The Hacker News
Actively Exploited
Summary
Fortinet has issued a warning regarding a medium-severity vulnerability in FortiWeb, tracked as CVE-2025-58034, which has been actively exploited in the wild. The flaw, categorized as an OS Command Injection vulnerability, could allow authenticated attackers to execute arbitrary commands on affected systems.
Impact
FortiWeb
In the Wild
Yes
Timeline
Newly disclosed
Remediation
Fortinet recommends that users apply available security patches and updates for FortiWeb to mitigate the risk associated with this vulnerability. Users should also review their authentication mechanisms and limit access to FortiWeb to trusted users only.