CVE-2025-58034

Exploited in the Wild ✓ Confirmed 0-Day

Triaged: March 5, 2026 4 articles

VulnLookup ↗ NVD ↗ MITRE ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-24

35.99%

probability

This CVE has a 35.99% probability of being exploited in the next 30 days.

0% Top 97.2th percentile of all CVEs 100%

CVSS score unavailable

Neither CIRCL nor NVD returned a CVSS score for this CVE. View on VulnerabilityLookup ↗

Attack Intelligence

CWE-707 · Improper Neutralization CWE-74 · Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-77 · Command Injection CWE-78 · OS Command Injection

Fortinet warns of new FortiWeb zero-day exploited in attacks

BleepingComputer Nov 18, 2025

CISA gives govt agencies 7 days to patch new Fortinet flaw

BleepingComputer Nov 19, 2025

Multiple OS command injection in API and CLI

Fortinet-PSIRT Nov 18, 2025

Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild

TheHackerNews Nov 19, 2025

Signal Intelligence

Confidenceⓘ

85%

EPSS 35.99%

Mentions 4

Last Seen Nov 19, 2025

CNA Information

Analyst Note

CVE-2025-58034 is explicitly named as a zero-day exploited in the wild by Fortinet and multiple authoritative sources (BleepingComputer, TheHackerNews). Published November 18, 2025, with immediate exploitation reports and CISA emergency directive (7-day patch deadline for government agencies), indicating active attacks preceded or coincided with disclosure.