Fortinet Patches Actively Exploited Vulnerability in FortiClient EMS

Fortinet has released emergency patches to address a critical security flaw in FortiClient EMS, which has been actively exploited by attackers in the wild.

The vulnerability, identified as CVE-2026-35616, carries a high CVSS score of 9.1 and is described as a pre-authentication API access bypass that can lead to privilege escalation, allowing unauthorized users to gain elevated access to sensitive systems.

The issue is rooted in an improper access control vulnerability, classified as CWE-284, which affects FortiClient EMS and may enable an unauthenticated attacker to bypass security controls and potentially take control of the system.

Fortinet’s out-of-band patches aim to remediate this vulnerability, and users are advised to apply the updates as soon as possible to prevent potential exploitation.

Given the vulnerability’s high severity and the fact that it is being actively exploited, it is essential for organizations using FortiClient EMS to prioritize the application of these patches to safeguard their networks and data.

Source: Original Article

Press ESC to close

Share Article:

Tarang Parmar

Malicious npm Packages Exploit Redis and PostgreSQL to Deploy Persistent Implants

Cybercriminals Unleash Fake Installers to Spread Remote Access Trojans and Crypto Miners