CVE-2025-58034
Fortinet FortiWeb OS Command Injection Vulnerability
⚠ KEVEPSS 42.5%
Description
Fortinet FortiWeb contains an OS command Injection vulnerability that may allow an authenticated attacker to execute unauthorized code on the underlying system via crafted HTTP requests or CLI commands.
How to fix CVE-2025-58034
No package mapping is available — consult the references below for vendor-specific guidance.
Is CVE-2025-58034 being exploited?
Yes — CVE-2025-58034 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.
Affected packages (0)
No package mapping in OSV.