How to find Fortinet FortiWeb assets on your network

Fortinet FortiWeb is affected by two critical vulnerabilities—CVE-2025-64446 (relative path traversal leading to administrative command execution) and CVE-2025-25257 (pre-authentication SQL injection enabling arbitrary commands)—both actively exploited in the wild with high CVSS scores; Fortinet published advisories and specific version upgrades/patches to mitigate the issues.