Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

PSIRT

Fortinet warns of FortiWeb OS command injection flaw CVE-2025-58034 exploited in the wild

News, Risk, Vendors, Vulnerabilities

November 19, 2025

Fortinet warned that CVE-2025-58034, a medium-severity OS command injection in FortiWeb with a CVSS score of 6.7, has been exploited in the wild; patches are available in specific FortiWeb releases and the company credited a Trend Micro researcher for the report.

About
Editorial Policy
Privacy
Contact