CVE-2026-35616 - Geek Feed

CISA orders feds to patch exploited Fortinet EMS flaw by Friday

April 8, 2026 geekfeed0Tagged Actively Exploited, CISA, CVE-2026-35616, Elevation of Privileges, Forticlient EMS, Fortinet, Privilege Escalation, vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies to secure FortiClient Enterprise Management Server (EMS) instances against an actively exploited vulnerability by Friday. Tracked as CVE-2026-35616, this security flaw was discovered by cybersecurity firm Defused, which described it as a pre-authentication API access bypass that can allow attackers to bypass authentication and […]

2 mins read

New FortiClient EMS flaw exploited in attacks, emergency patch released

April 7, 2026April 7, 2026 geekfeed0Tagged Actively Exploited, CVE-2026-35616, Elevation of Privileges, Forticlient EMS, Fortinet, vulnerability

Fortinet has released an emergency weekend security update for a new critical FortiClient Enterprise Management Server (EMS) vulnerability that is actively exploited in attacks. Tracked as CVE-2026-35616, the flaw is an improper access control vulnerability that allows unauthenticated attackers to execute code or commands via specially crafted requests. The issue was patched Saturday, with Fortinet […]

1 min read