Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the...

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Fortinet has warned of a new security flaw in FortiWeb that it said has been exploited in the wild.

The medium-severity vulnerability, tracked as **CVE-2025-58034** , carries a CVSS score of 6.7 out of a maximum of 10.0.

"An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] in FortiWeb may allow an authenticated attacker to execute unauthorized code on the underlying system via crafted HTTP requests or CLI commands," the company said in a Tuesday advisory.

In other words, successful attacks require an attacker to first authenticate themselves through some other means and chain it with CVE-2025-58034 to execute arbitrary operating system commands.

CIS Build Kits

It has been addressed in the following versions -

* FortiWeb 8.0.0 through 8.0.1 (Upgrade to 8.0.2 or above)
* FortiWeb 7.6.0 through 7.6.5 (Upgrade to 7.6.6 or above)
* FortiWeb 7.4.0 through 7.4.10 (Upgrade to 7.4.11 or above)
* FortiWeb 7.2.0 through 7.2.11 (Upgrade to 7.2.12 or above)
* FortiWeb 7.0.0 through 7.0.11 (Upgrade to 7.0.12 or above)

The company credited Trend Micro researcher Jason McFadyen for reporting the flaw under its responsible disclosure policy.

Interestingly, the development comes days after Fortinet confirmed that it silently patched another critical FortiWeb vulnerability (CVE-2025-64446, CVSS score: 9.1) in version 8.0.2.

"We activated our PSIRT response and remediation efforts as soon as we learned of this matter, and those efforts remain ongoing," a Fortinet spokesperson told The Hacker News. "Fortinet diligently balances our commitment to the security of our customers and our culture of responsible transparency."

It's currently not clear why Fortinet opted to patch the flaws without releasing an advisory. But the move has left defenders at a disadvantage, effectively preventing them from mounting an adequate response.

"When popular technology vendors fail to communicate new security issues, they are issuing an invitation to attackers while choosing to keep that same information from defenders," VulnCheck noted last week.

Found this article interesting? Follow us on Google News, Twitter and LinkedIn to read more exclusive content we post.

Visit Original Source

Basic Information

ID THN:DC228E29BEDBCCD0C7D7D9EF803512D8

Published Nov 19, 2025 at 04:20

{
    "lastseen": "2025-11-19T04:32:51",
    "description": "![FortiWeb CVE-2025-58034 Vulnerability](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=)\n\nFortinet has warned of a new security flaw in FortiWeb that it said has been exploited in the wild.\n\nThe medium-severity vulnerability, tracked as **CVE-2025-58034** , carries a CVSS score of 6.7 out of a maximum of 10.0.\n\n\"An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] in FortiWeb may allow an authenticated attacker to execute unauthorized code on the underlying system via crafted HTTP requests or CLI commands,\" the company said in a Tuesday advisory.\n\nIn other words, successful attacks require an attacker to first authenticate themselves through some other means and chain it with CVE-2025-58034 to execute arbitrary operating system commands.\n\n![CIS Build Kits](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=)\n\nIt has been addressed in the following versions -\n\n  * FortiWeb 8.0.0 through 8.0.1 (Upgrade to 8.0.2 or above)\n  * FortiWeb 7.6.0 through 7.6.5 (Upgrade to 7.6.6 or above)\n  * FortiWeb 7.4.0 through 7.4.10 (Upgrade to 7.4.11 or above)\n  * FortiWeb 7.2.0 through 7.2.11 (Upgrade to 7.2.12 or above)\n  * FortiWeb 7.0.0 through 7.0.11 (Upgrade to 7.0.12 or above)\n\n\n\nThe company credited Trend Micro researcher Jason McFadyen for reporting the flaw under its responsible disclosure policy.\n\nInterestingly, the development comes days after Fortinet confirmed that it silently patched another critical FortiWeb vulnerability (CVE-2025-64446, CVSS score: 9.1) in version 8.0.2.\n\n\"We activated our PSIRT response and remediation efforts as soon as we learned of this matter, and those efforts remain ongoing,\" a Fortinet spokesperson told The Hacker News. \"Fortinet diligently balances our commitment to the security of our customers and our culture of responsible transparency.\"\n\nIt's currently not clear why Fortinet opted to patch the flaws without releasing an advisory. But the move has left defenders at a disadvantage, effectively preventing them from mounting an adequate response.\n\n\"When popular technology vendors fail to communicate new security issues, they are issuing an invitation to attackers while choosing to keep that same information from defenders,\" VulnCheck noted last week.\n\nFound this article interesting? Follow us on Google News, Twitter and LinkedIn to read more exclusive content we post.\n",
    "published": "2025-11-19T04:20:00",
    "modified": "2025-11-19T04:20:45",
    "type": "thn",
    "title": "Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild",
    "source": "",
    "references": "",
    "id": "THN:DC228E29BEDBCCD0C7D7D9EF803512D8",
    "bulletinFamily": "info",
    "cwe": null,
    "cvelist": [
        "CVE-2025-58034",
        "CVE-2025-64446"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://thehackernews.com/2025/11/fortinet-warns-of-new-fortiweb-cve-2025.html",
    "category_name": "News",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild_THN:DC228E29BEDBCCD0C7D7D9EF803512D8

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply