Critical severity9.8CISA KEVNVD Advisory· Published Apr 4, 2026· Updated Apr 6, 2026
CVE-2026-35616
CVE-2026-35616
Description
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:fortinet:forticlientems:7.4.5:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:fortinet:forticlientems:7.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:fortinet:forticlientems:7.4.6:*:*:*:*:*:*:*
- (no CPE)range: >=7.4.5, <=7.4.6
Patches
Vulnerability mechanics
References
2- fortiguard.fortinet.com/psirt/FG-IR-26-099nvdVendor AdvisoryPatch
- www.cisa.gov/known-exploited-vulnerabilities-catalognvdUS Government Resource
News mentions
15- 3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker CrosshairsSecurityWeek · Jun 17, 2026
- Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last WeekThe Hacker News · Jun 16, 2026
- China-Linked JDY Botnet Uses 1,500+ SOHO and IoT Devices for Rapid Vulnerability ExploitationCyber Security News · Jun 11, 2026
- China-Linked JDY Botnet Expands to 1,500+ Devices for Cyber ReconnaissanceThe Hacker News · Jun 10, 2026
- China-linked JDY botnet expands targeting of U.S. military networksBleepingComputer · Jun 10, 2026
- Week in review: Infostealer dropped via FortiClient EMS flaw, exploited Trend Micro Apex One flawHelp Net Security · May 31, 2026
- PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active ExploitationThe Hacker News · May 30, 2026
- New infostealer reaches enterprise devices through FortiClient EMS vulnerabilityHelp Net Security · May 29, 2026
- Hackers exploit FortiClient EMS flaw to push infostealer malwareBleepingComputer · May 28, 2026
- Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential StealerThe Hacker News · May 28, 2026
- Critical FortiClient EMS Vulnerability Exploited in Fresh AttacksSecurityWeek · May 28, 2026
- FortiClient EMS Code Execution Vulnerability Exploited to Deploy EKZ MalwareCyber Security News · May 28, 2026
- Fortinet warns of critical RCE flaws in FortiSandbox and FortiAuthenticatorBleepingComputer · May 12, 2026
- 13th April – Threat Intelligence ReportCheck Point Research · Apr 13, 2026
- Fortinet Releases Emergency Patch After FortiClient EMS Bug Is ExploitedInfosecurity Magazine · Apr 7, 2026