The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Fortinet FortiWeb vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, confirming active exploitation of the SQL injection flaw in cyberattacks worldwide. The vulnerability, tracked as CVE-2025-25257, affects Fortinet’s FortiWeb web application firewall and carries a severe CVSS score of 9.6 out of 10. […]
The post CISA Warns of Fortinet FortiWeb SQL Injection Vulnerability Exploited in Attacks appeared first on Cyber Security News.
This article has been indexed from Cyber Security News