CVE Tools
Back to feed
watchTowr Labs ·EN Vendor research Exploited in the wildFortiWeb

When The Impersonation Function Gets Used To Impersonate Users (Fortinet FortiWeb Auth. Bypass CVE-2025-64446)

By Sina Kheirkhah (@SinSinology)··7 min read

The Internet is ablaze, and once again we all have a front-row seat - a bad person, if you can believe it, is doing a bad thing!

The first warning of such behaviour came from the great team at Defused:

As many are now aware, an unnamed (and potentially silently fixed) vulnerability affecting a number of Forti-devices (blast radius is currently unclear) is being actively exploited. For many, this will feel like a normal Tuesday.…

Continue reading on watchTowr Labs