topic Now-Patched Fortinet FortiWeb Flaw Exploited in Attacks to Create Admin Accounts in Tech Talk https://community.isc2.org/t5/Tech-Talk/Now-Patched-Fortinet-FortiWeb-Flaw-Exploited-in-Attacks-to/m-p/85640#M5207 <P>A write up on the Fortinet exploit.</P><P>&nbsp;</P><P>Fortinet finally published a security advisory on Friday for a critical FortiWeb path traversal vulnerability under active exploitation – but it appears digital intruders got a month's head start.</P><P>&nbsp;</P><P>The bug, now tracked as<SPAN>&nbsp;</SPAN><A href="https://nvd.nist.gov/vuln/detail/CVE-2025-64446" target="_blank" rel="nofollow noopener">CVE-2025-64446</A>, allows unauthenticated attackers to execute administrative commands on Fortinet's web application firewall product and fully take over vulnerable devices. It's fully patched in FortiWeb version 8.0.2, but it didn't even have a CVE assigned to it until Friday, when the vendor admitted&nbsp;to having "observed this to be exploited in the wild."</P><P>&nbsp;</P><P><A href="https://thehackernews.com/2025/11/fortinet-fortiweb-flaw-actively.html?is=edd1d96d3b429ca7eaae0b1f51ebed90b0ccb950b7b031b5d1ce47ea80ef8c52" target="_blank">https://thehackernews.com/2025/11/fortinet-fortiweb-flaw-actively.html?is=edd1d96d3b429ca7eaae0b1f51ebed90b0ccb950b7b031b5d1ce47ea80ef8c52</A></P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Tue, 18 Nov 2025 21:18:21 GMT dcontesti 2025-11-18T21:18:21Z Now-Patched Fortinet FortiWeb Flaw Exploited in Attacks to Create Admin Accounts https://community.isc2.org/t5/Tech-Talk/Now-Patched-Fortinet-FortiWeb-Flaw-Exploited-in-Attacks-to/m-p/85640#M5207 <P>A write up on the Fortinet exploit.</P><P>&nbsp;</P><P>Fortinet finally published a security advisory on Friday for a critical FortiWeb path traversal vulnerability under active exploitation – but it appears digital intruders got a month's head start.</P><P>&nbsp;</P><P>The bug, now tracked as<SPAN>&nbsp;</SPAN><A href="https://nvd.nist.gov/vuln/detail/CVE-2025-64446" target="_blank" rel="nofollow noopener">CVE-2025-64446</A>, allows unauthenticated attackers to execute administrative commands on Fortinet's web application firewall product and fully take over vulnerable devices. It's fully patched in FortiWeb version 8.0.2, but it didn't even have a CVE assigned to it until Friday, when the vendor admitted&nbsp;to having "observed this to be exploited in the wild."</P><P>&nbsp;</P><P><A href="https://thehackernews.com/2025/11/fortinet-fortiweb-flaw-actively.html?is=edd1d96d3b429ca7eaae0b1f51ebed90b0ccb950b7b031b5d1ce47ea80ef8c52" target="_blank">https://thehackernews.com/2025/11/fortinet-fortiweb-flaw-actively.html?is=edd1d96d3b429ca7eaae0b1f51ebed90b0ccb950b7b031b5d1ce47ea80ef8c52</A></P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Tue, 18 Nov 2025 21:18:21 GMT https://community.isc2.org/t5/Tech-Talk/Now-Patched-Fortinet-FortiWeb-Flaw-Exploited-in-Attacks-to/m-p/85640#M5207 dcontesti 2025-11-18T21:18:21Z