CVE-2025-58034

⚠ KEVEPSS 42.5%

Fortinet FortiWeb OS Command Injection Vulnerability

Added to CISA KEV: 11/18/2025

Description

Fortinet FortiWeb contains an OS command Injection vulnerability that may allow an authenticated attacker to execute unauthorized code on the underlying system via crafted HTTP requests or CLI commands.

Affected packages (0)

No package mapping in OSV.