Fortinet customers told to update immediately after major security issue – here’s what we know
CVE-2025-64446 allows unauthorized attackers to execute admin commands on FortiWeb WAF systems Actively exploited in nature; affects version 7.0.0-8.0.1, patched in 8.0.2 CISA added it to KEV; Fortinet encourages immediate patching or disabling of Internet-facing HTTP/HTTPS interfaces Fortinet has released a patch for a critical vulnerability in its FortiWeb web application firewall (WAF) and has […]









