Home/Tag/Forticlient Ems

Forticlient Ems

4 articles tagged with "Forticlient Ems"

Malware5 min read

FortiClient EMS Exploited to Push Fake Patch That Steals Credentials

Attackers weaponize CVE-2026-35616 to deploy EKZ infostealer via FortiClient EMS management features. Fake Fortinet patch harvests browser passwords and cookies.

Malware DeskMay 28, 2026

Vulnerabilities4 min read

CISA Orders Feds to Patch FortiClient EMS Flaw by Thursday

CISA adds CVE-2026-35616 to KEV catalog with April 9 deadline for federal agencies. Nearly 2,000 FortiClient EMS instances remain exposed as exploitation continues.

Vulnerability DeskApr 6, 2026

Vulnerabilities5 min read

FortiClient EMS Zero-Day Under Active Exploit — Patch Now

CVE-2026-35616 lets attackers bypass API authentication in FortiClient EMS 7.4.5-7.4.6 for unauthenticated RCE. Exploitation began March 31. Emergency hotfixes available.

Vulnerability DeskApr 5, 2026

Vulnerabilities4 min read

Attackers Exploiting FortiClient EMS SQLi Flaw in the Wild

CVE-2026-21643 exploitation began March 26, six weeks after Fortinet's patch. Around 1,000 internet-exposed EMS instances remain vulnerable to unauthenticated RCE.

Vulnerability DeskMar 31, 2026