What is CVE-2026-35616 in FortiClient EMS?

It's a CVSS 9.1 access control flaw letting unauthenticated attackers run code via crafted requests – actively exploited.

How do I patch Fortinet FortiClient EMS vulnerabilities?

Grab hotfixes for 7.4.5/7.4.6 or upgrade to 7.4.7; disconnect web UI from internet as interim.

Yes – attackers can push malicious payloads to entire fleets, priming for ransomware or worse.

🕳️ Vulnerabilities & CVEs

Fortinet's endpoint management server is bleeding from two zero-day wounds. Attackers are already feasting – time to patch or perish.

Threat Digest Apr 07, 2026 3 min read

Two critical FortiClient EMS bugs (CVSS 9.1 & 9.8) exploited in wild; patch immediately. 𝕏
Endpoint managers like EMS are prime targets for fleet-wide compromise. 𝕏
Echoes SolarWinds: expect automated attacks on management layers soon. 𝕏

Published by

Threat intelligence. Zero noise.

#CVE-2026-35616 #FortiClient EMS #Fortinet #SQL injection #zero-day exploit

Get the best Cybersecurity stories of the week in your inbox — no noise, no spam.

Originally reported by InfoSecurity Magazine