FortiClient Endpoint Management Server

FortiClient Endpoint Management Server (EMS) SQL Injection Vulnerability (CVE-2026-21643)

Posted by Diksha Ojha on February 11, 2026

Fortinet released a security advisory to address a critical severity vulnerability impacting FortiClientEMS. Tracked as CVE-2026-21643, successful exploitation of the vulnerability could lead to arbitrary code execution on the target system. The vulnerability has a CVSS score of 9.1.

FortiClient Endpoint Management Server (EMS) SQL Injection Vulnerability (CVE-2023-48788)

Posted by Diksha Ojha on March 18, 2024March 25, 2024

Fortinet addressed a critical severity vulnerability impacting the FortiClient Enterprise Management Server. Tracked as CVE-2023-48788, the vulnerability may allow an attacker to achieve code execution on affected systems. The vulnerability has been given a CVSS score of 9.3.