Loading Makriva intelligence feed...
Loading Makriva intelligence feed...
Fortinet FortiClient EMS contains an improper access control vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests.
CISA lists CVE-2026-35616 as known exploited in the wild for Fortinet FortiClient EMS. Ransomware campaign use: Unknown. Federal remediation due date: 2026-04-09.
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.