CVE-2026-21643
CVE-2026-21643
In short
FortiClientEMS 7.4.4 has a flaw that allows attackers to inject malicious SQL code through HTTP requests without needing to log in. This can lead to unauthorized access, data theft, or system compromise.
Technical detail
SQL injection vulnerability in Fortinet FortiClientEMS 7.4.4 allows unauthenticated attackers to manipulate SQL queries via crafted HTTP requests, potentially leading to arbitrary command execution. The vulnerability results from improper input validation and sanitization of user-supplied data in SQL command construction, enabling attackers to bypass authentication and execute unauthorized code.
Summary generated and translated by AI from the official description.
An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiClientEMS 7.4.4 may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP requests.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C
Affected products
Fortinet · FortiClientEMSpublic PoCs found — 1
cve_referencegithub.com/0xBlackash/CVE-2026-21643/blob/main/cve-2026-21643.pyunverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →