THREATOPS
THREAT OPSCVEs › CVE-2026-35616

CVE-2026-35616 — Fortinet FortiClient EMS Improper Access Control Vulnerability

CISA KEVExploited: confirmedFortinet

Fortinet FortiClient EMS contains an improper access control vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests.

Vulnerability details

Exploiting threat actors

Related reporting