Fortinet has released urgent updates to fix a newly discovered zero-day vulnerability (CVE-2025-58034) in FortiWeb that is currently being exploited. The issue could allow attackers with access to run harmful commands on affected systems. In addition to FortiWeb, Fortinet has released updates to address other high-risk vulnerabilities across FortiOS, FortiProxy, FortiSandbox and more.

Affected Systems:

The affected systems and versions are:

• FortiWeb 8.0: 8.0.0 - 8.0.1

• FortiWeb 7.6: 7.6.0 - 7.6.5

• FortiWeb 7.4: 7.4.0 - 7.4.10

• FortiWeb 7.2: 7.2.0 - 7.2.11

• FortiWeb 7.0: 7.0.0 - 7.0.11
   

Other Fortinet Products include, but are not limited to:

• FortiOS: 7.6.0-7.6.3, 7.4.0 - 7.4.8

• FortiProxy: 7.6.0-7.6.3

• FortiSandbox: 5.0.0-5.0.1, 4.4.0-4.4.7

Security Risks

Successful exploitation of these vulnerabilities may allow attackers to execute unauthorized commands, access sensitive data, or compromise affected systems.

Recommended Actions

The National Cyber Security Authority (NCSA) strongly recommends that system administrators:

• Follow Fortinet Security Advisory to lower the risk of potential exploits, protect systems, and ensure their security.

• Apply the required and latest security updates as soon as possible.

The released software versions for upgrade are:

• FortiWeb 8.0: 8.0.2 and above

• FortiWeb 7.6: 7.6.6 and above

• FortiWeb 7.4: 7.4.11 and above

• FortiWeb 7.2: 7.2.12 and above

• FortiWeb 7.0: 7.0.12 and above

Other Fortinet Products upgrade include, but not limited to:

• FortiOS: Upgrade to 7.6.4 or above, 7.4.9 or above

• FortiProxy: Upgrade to 7.6.4 or above

• FortiSandbox: Upgrade to 5.0.2 or above, 4.4.8 or above

For further information and support, please contact NCSA by email at rwcsirt@ncsa.gov.rw or call us at 9009.

References

• https://fortiguard.fortinet.com/psirt/FG-IR-25-513

• Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild

• https://www.fortiguard.com/psirt