Fortinet has released out-of-band patches for a critical security flaw impacting FortiClient EMS that it said has been exploited in the wild.The vulnerability, tracked as CVE-2026-35616 (CVSS score: 9.1), has been described as a pre-authentication API access bypass leading to privilege escalation.”An improper access control vulnerability [CWE-284] in FortiClient EMS may allow an
First seen on thehackernews.com
Jump to article: thehackernews.com/2026/04/fortinet-patches-actively-exploited-cve.html
