CVE-2026-35616
CVE-2026-35616
In short
FortiClientEMS versions 7.4.5 to 7.4.6 have a flaw that allows attackers without login credentials to run unauthorized code or commands on the system. This is critical because it gives attackers full control over the management system used to protect company devices.
Technical detail
An improper access control vulnerability in FortiClientEMS 7.4.5-7.4.6 permits unauthenticated remote attackers to execute arbitrary code or OS commands via specially crafted requests. The vulnerability stems from insufficient authentication checks on sensitive endpoints, allowing bypass of security controls and direct code execution with system privileges.
Summary generated and translated by AI from the official description.
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C
Affected products
Fortinet · FortiClientEMSpublic PoCs found — 2
githubgithub.com/HORKimhab/CVE-2026-35616★ 0githubgithub.com/jenniferreire26/CVE-2026-35616★ 0⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →