{"id":4016,"date":"2025-11-19T17:52:31","date_gmt":"2025-11-19T09:52:31","guid":{"rendered":"https:\/\/blog.billows.com.tw\/?p=4016"},"modified":"2025-11-19T17:54:53","modified_gmt":"2025-11-19T09:54:53","slug":"fortiweb-%e5%86%8d%e6%9b%9d%e9%9b%b6%e6%97%a5%e6%bc%8f%e6%b4%9e%ef%bc%9acve-2025-58034-%e8%88%87-cve-2025-64446-%e6%ad%a3%e5%9c%a8%e8%a2%ab%e7%a9%8d%e6%a5%b5%e5%88%a9%e7%94%a8%ef%bc%8c%e4%bc%81","status":"publish","type":"post","link":"https:\/\/blog.billows.com.tw\/?p=4016","title":{"rendered":"FortiWeb \u518d\u66dd\u96f6\u65e5\u6f0f\u6d1e\uff1aCVE-2025-58034 \u8207 CVE-2025-64446 \u6b63\u5728\u88ab\u7a4d\u6975\u5229\u7528\uff0c\u4f01\u696d\u5fc5\u9808\u7acb\u5373\u9632\u8b77"},"content":{"rendered":"\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"646\" height=\"308\" src=\"https:\/\/blog.billows.com.tw\/wp-content\/uploads\/2025\/11\/image-16.png\" alt=\"\" class=\"wp-image-4017\" srcset=\"https:\/\/blog.billows.com.tw\/wp-content\/uploads\/2025\/11\/image-16.png 646w, https:\/\/blog.billows.com.tw\/wp-content\/uploads\/2025\/11\/image-16-300x143.png 300w\" sizes=\"auto, (max-width: 646px) 100vw, 646px\" \/><\/figure>\n\n\n\n<p>2025 \u5e74 11 \u6708\uff0cFortinet \u9023\u7e8c\u63ed\u9732\u5169\u500b FortiWeb Web \u61c9\u7528\u9632\u706b\u7246\uff08WAF\uff09\u7684\u91cd\u5927\u6f0f\u6d1e\uff0c\u4e26\u78ba\u8a8d\u5df2\u906d\u653b\u64ca\u8005\u5728\u91ce\u5229\u7528\u3002\u9019\u4e00\u7cfb\u5217\u4e8b\u4ef6\uff0c\u518d\u5ea6\u63d0\u9192\u4f01\u696d\uff1a<strong>\u908a\u754c\u5b89\u5168\u8a2d\u5099\u672c\u8eab\u5c31\u662f\u9ad8\u50f9\u503c\u653b\u64ca\u76ee\u6a19<\/strong>\uff0c\u975e\u50c5\u4fdd\u8b77\u61c9\u7528\u5c64\u7684\u9632\u8b77\u5c4f\u969c\u3002<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><strong><a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-58034\">CVE-2025-58034<\/a> \u2014 OS Command Injection<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>\u6f0f\u6d1e\u985e\u578b<\/strong>\uff1aOS Command Injection\uff08CWE-78\uff09<\/li>\n\n\n\n<li><strong>\u653b\u64ca\u689d\u4ef6<\/strong>\uff1a\u9700\u5148\u53d6\u5f97\u6709\u6548\u5e33\u865f\u8a8d\u8b49\uff0c\u900f\u904e HTTP \u6216 CLI \u57f7\u884c\u60e1\u610f\u6307\u4ee4<\/li>\n\n\n\n<li><strong>CVSS <\/strong><strong>\u5206\u6578<\/strong>\uff1a6.7 \/ 10\uff08\u4e2d\u7b49\uff09<\/li>\n\n\n\n<li><strong>\u6f0f\u6d1e\u5f71\u97ff<\/strong>\uff1a\u653b\u64ca\u8005\u53ef\u5728 FortiWeb \u5e95\u5c64\u7cfb\u7d71\u57f7\u884c\u4efb\u610f\u547d\u4ee4\uff0c\u53d6\u5f97\u672a\u6388\u6b0a\u63a7\u5236<\/li>\n\n\n\n<li><strong>\u767c\u73fe\u8207\u901a\u5831<\/strong>\uff1a\u7531 Trend Micro \u7814\u7a76\u54e1 Jason McFadyen \u901a\u5831\uff0cFortinet \u65bc 11 \u6708 18 \u65e5\u767c\u5e03\u4fee\u88dc\u7248\u672c<\/li>\n<\/ul>\n\n\n\n<p><strong>\u53d7\u5f71\u97ff\u7248\u672c\u8207\u4fee\u88dc\u5efa\u8b70<\/strong>\uff1a<\/p>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><thead><tr><td><strong>FortiWeb <\/strong><strong>\u7248\u672c<\/strong><\/td><td><strong>\u53d7\u5f71\u97ff\u7bc4\u570d<\/strong><\/td><td><strong>\u5efa\u8b70\u4fee\u88dc\u7248\u672c<\/strong><\/td><\/tr><\/thead><tbody><tr><td>8.0<\/td><td>8.0.0\u20138.0.1<\/td><td>8.0.2 \u6216\u4ee5\u4e0a<\/td><\/tr><tr><td>7.6<\/td><td>7.6.0\u20137.6.5<\/td><td>7.6.6 \u6216\u4ee5\u4e0a<\/td><\/tr><tr><td>7.4<\/td><td>7.4.0\u20137.4.10<\/td><td>7.4.11 \u6216\u4ee5\u4e0a<\/td><\/tr><tr><td>7.2<\/td><td>7.2.0\u20137.2.11<\/td><td>7.2.12 \u6216\u4ee5\u4e0a<\/td><\/tr><tr><td>7.0<\/td><td>7.0.0\u20137.0.11<\/td><td>7.0.12 \u6216\u4ee5\u4e0a<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<p>\u8cc7\u5b89\u7db2\u7ad9<a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/fortinet-warns-of-new-fortiweb-zero-day-exploited-in-attacks\/\" title=\"\">BleepingComputer<\/a>\u5831\u9053, Trend Micro \u5df2\u89c0\u6e2c\u5230\u7d04 <strong>2,000 \u6b21\u653b\u64ca\u884c\u70ba<\/strong>\uff0c\u986f\u793a\u6f0f\u6d1e\u6b63\u5728\u5168\u7403\u7bc4\u570d\u5167\u5be6\u969b\u5229\u7528\u3002<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><strong><a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-64446\">CVE-2025-64446<\/a> \u2014 <\/strong><strong>\u8def\u5f91\u904d\u6b77 + <\/strong><strong>\u8a8d\u8b49\u7e5e\u904e<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>\u6f0f\u6d1e\u985e\u578b<\/strong>\uff1a\u8def\u5f91\u904d\u6b77 + \u8a8d\u8b49\u7e5e\u904e<\/li>\n\n\n\n<li><strong>CVSS <\/strong><strong>\u5206\u6578<\/strong>\uff1a9.1 \/ 10\uff08\u9ad8\u5371\uff09<\/li>\n\n\n\n<li><strong>\u653b\u64ca\u65b9\u5f0f<\/strong>\uff1a\u672a\u8a8d\u8b49\u5373\u53ef\u900f\u904e HTTP POST \u5efa\u7acb\u7ba1\u7406\u54e1\u5e33\u865f\uff0c\u5b8c\u5168\u638c\u63a7 WAF<\/li>\n\n\n\n<li><strong>\u53d7\u5f71\u97ff\u7248\u672c<\/strong>\uff1a8.0.0\u20138.0.1\u30017.6.0\u20137.6.4\u30017.4.0\u20137.4.9\u30017.2.0\u20137.2.11\u30017.0.0\u20137.0.11<\/li>\n\n\n\n<li><strong>\u4fee\u88dc\u7248\u672c<\/strong>\uff1a8.0.2\u30017.6.5\u30017.4.10\u30017.2.12\u30017.0.12<\/li>\n<\/ul>\n\n\n\n<p>\u503c\u5f97\u6ce8\u610f\u7684\u662f\uff0cFortinet <strong>\u5728 10 <\/strong><strong>\u6708\u5e95\u5df2\u6084\u6084\u4fee\u88dc<\/strong> CVE-2025-64446\uff0c\u4f46\u76f4\u5230 11 \u6708 14 \u65e5\u624d\u6b63\u5f0f\u767c\u5e03\u516c\u544a\u3002\u6b64\u671f\u9593\uff0c\u653b\u64ca\u8005\u5df2\u7d93\u958b\u59cb\u91dd\u5c0d\u6f0f\u6d1e\u884c\u52d5\uff0c\u7559\u4e0b\u4f01\u696d\u7121\u6cd5\u53ca\u6642\u61c9\u5c0d\u7684\u98a8\u96aa\u3002CISA \u4ea6\u65bc\u540c\u65e5\u5c07\u6f0f\u6d1e\u5217\u5165 <strong>KEV<\/strong><strong>\uff08Known Exploited Vulnerabilities<\/strong><strong>\uff09\u6e05\u55ae<\/strong>\uff0c\u8981\u6c42\u7f8e\u570b\u653f\u5e9c\u6a5f\u69cb\u65bc\u4e00\u9031\u5167\u4fee\u88dc\u3002<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><strong>\u653b\u64ca\u6a21\u5f0f\u8207\u98a8\u96aa\u5206\u6790<\/strong><\/p>\n\n\n\n<p>\u8cc7\u5b89\u5c08\u5bb6\u6307\u51fa\uff0c\u9019\u5169\u500b\u6f0f\u6d1e\u96d6\u7136\u653b\u64ca\u689d\u4ef6\u4e0d\u540c\uff0c\u4f46\u5177\u6709\u5171\u540c\u7279\u5fb5\uff1a<\/p>\n\n\n\n<ol start=\"1\" class=\"wp-block-list\">\n<li><strong>\u76ee\u6a19\u4e0d\u662f\u7db2\u7ad9\uff0c\u800c\u662f\u908a\u754c\u5b89\u5168\u8a2d\u5099\u672c\u8eab<\/strong>\n<ul class=\"wp-block-list\">\n<li>\u63a7\u5236 WAF \u53ef\u76e3\u63a7\u3001\u4fee\u6539\u6838\u5fc3\u7db2\u7ad9\u6d41\u91cf<\/li>\n\n\n\n<li>\u63a7\u5236 VPN \u53ef\u638c\u63e1\u5167\u90e8\u7db2\u8def\u901a\u9053<\/li>\n\n\n\n<li>\u63a7\u5236 SIEM \u53ef\u96b1\u533f\u6216\u5e72\u64fe\u5b89\u5168\u4e8b\u4ef6<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>\u653b\u64ca\u884c\u70ba\u5df2\u7d93\u81ea\u52d5\u5316\uff0c\u5168\u7403\u66b4\u9732\u8a2d\u5099\u5747\u53ef\u80fd\u6210\u70ba\u76ee\u6a19<\/li>\n\n\n\n<li>\u6b77\u53f2\u6848\u4f8b\u986f\u793a\uff0cAPT \u6216\u52d2\u7d22\u7d44\u7e54\u7d93\u5e38\u5229\u7528 Fortinet \u6f0f\u6d1e\u9032\u884c\u6ef2\u900f\uff0c\u4f8b\u5982\u4e2d\u570b Volt Typhoon \u7d44\u7e54\u900f\u904e FortiOS SSL VPN \u6f0f\u6d1e\u5165\u4fb5\u8377\u862d\u570b\u9632\u90e8\uff0c\u90e8\u7f72\u5f8c\u9580 RAT<\/li>\n<\/ol>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><strong>\u4f01\u696d\u9632\u8b77\u5efa\u8b70<\/strong><\/p>\n\n\n\n<ol start=\"1\" class=\"wp-block-list\">\n<li><strong>\u7acb\u5373\u5347\u7d1a FortiWeb<\/strong> \u81f3\u5b98\u65b9\u4fee\u88dc\u7248\u672c<\/li>\n\n\n\n<li><strong>\u5c01\u9396\u6216\u9650\u5236\u5916\u7db2\u7ba1\u7406\u4ecb\u9762<\/strong>\n<ul class=\"wp-block-list\">\n<li>\u66ab\u6642\u7981\u6b62 HTTP\/HTTPS \u76f4\u9023<\/li>\n\n\n\n<li>\u9060\u7aef\u7ba1\u7406\u8acb\u642d\u914d VPN \u8207 MFA<\/li>\n\n\n\n<li>\u9650\u5236\u4f86\u6e90 IP<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>\u6aa2\u67e5\u7570\u5e38\u5e33\u865f\u8207\u914d\u7f6e\u8b8a\u66f4<\/strong>\n<ul class=\"wp-block-list\">\n<li>\u5c0b\u627e\u672a\u77e5\u65b0\u589e\u7684 Admin \u5e33\u865f<\/li>\n\n\n\n<li>\u6aa2\u67e5 HTTP POST \u8acb\u6c42\u8207 CLI \u64cd\u4f5c\u7d00\u9304<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>\u56de\u6eaf\u65e5\u8a8c\u8207\u5a01\u8105\u7375\u6355<\/strong>\n<ul class=\"wp-block-list\">\n<li>\u9396\u5b9a 10 \u6708\u4ee5\u4f86\u7684\u64cd\u4f5c\u8a18\u9304<\/li>\n\n\n\n<li>\u6aa2\u67e5\u53ef\u7591\u6307\u4ee4\u3001\u5e33\u865f\u7570\u5e38\u767b\u5165\u8207\u7570\u5e38\u5b58\u53d6<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>\u7db2\u8def\u5206\u6bb5<\/strong>\uff0c\u9650\u5236\u6f5b\u5728\u6a6b\u5411\u79fb\u52d5<\/li>\n<\/ol>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><strong>\u7d50\u8a9e<\/strong><\/p>\n\n\n\n<p>\u9019\u5169\u500b\u96f6\u65e5\u6f0f\u6d1e\u4e8b\u4ef6\u63d0\u9192\u4f01\u696d\uff1a<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u908a\u754c\u5b89\u5168\u8a2d\u5099\u672c\u8eab\u5c31\u662f\u9ad8\u50f9\u503c\u76ee\u6a19<\/li>\n\n\n\n<li>\u6f0f\u6d1e\u516c\u544a\u5ef6\u9072\u53ef\u80fd\u4f7f\u4f01\u696d\u8655\u65bc\u52a3\u52e2<\/li>\n\n\n\n<li><strong>\u5feb\u901f\u4fee\u88dc\u3001\u6301\u7e8c\u76e3\u63a7\u3001\u5a01\u8105\u7375\u6355<\/strong> \u662f\u9632\u8b77\u7684\u95dc\u9375<\/li>\n<\/ul>\n\n\n\n<p>\u4f01\u696d\u4e0d\u61c9\u50c5\u4fe1\u8cf4\u8a2d\u5099\u81ea\u5e36\u9632\u8b77\uff0c\u800c\u61c9\u5c07\u91cd\u9ede\u653e\u5728 <strong>\u5373\u6642\u5bdf\u89ba\u8207\u9632\u79a6\u7a81\u7834\u884c\u70ba<\/strong>\uff0c\u4ee5\u964d\u4f4e\u653b\u64ca\u8005\u5229\u7528 WAF \u63a7\u5236\u6838\u5fc3\u8cc7\u7522\u7684\u98a8\u96aa\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>2025 \u5e74 11 \u6708\uff0cFortinet \u9023\u7e8c\u63ed\u9732\u5169\u500b FortiWeb Web \u61c9\u7528\u9632\u706b\u7246\uff08WAF\uff09\u7684\u91cd\u5927\u6f0f <a class=\"read-more\" href=\"https:\/\/blog.billows.com.tw\/?p=4016\">READ MORE<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[],"class_list":["post-4016","post","type-post","status-publish","format-standard","hentry","category-6"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/4016","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4016"}],"version-history":[{"count":1,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/4016\/revisions"}],"predecessor-version":[{"id":4018,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/4016\/revisions\/4018"}],"wp:attachment":[{"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4016"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4016"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4016"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}