CVE-2025-58034CISA KEV: Actively Exploited

Fortinet FortiWeb OS Command Injection Vulnerability

Published Nov 18, 2025·Updated Nov 18, 2025

Description

Fortinet FortiWeb contains an OS command Injection vulnerability that may allow an authenticated attacker to execute unauthorized code on the underlying system via crafted HTTP requests or CLI commands.

Public Exploits & PoCs2 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free