Advertisement
VU
CRITICAL
Vulnerabilities
CVE-2026-35616: FortiClient EMS Exploit Delivers EKZ Infostealer
Attackers are actively exploiting CVE-2026-35616, an authentication bypass in FortiClient EMS, to deploy the EKZ infostealer. Protect your organization now.
Runtime Rebel Intel
4 min read·May 28, 2026
VU
CRITICAL
Vulnerabilities
CVE-2026-35616: Fortinet FortiClient EMS Vulnerability — KEV Alert
CISA adds CVE-2026-35616 affecting Fortinet FortiClient EMS to its Known Exploited Vulnerabilities catalog. Learn how to mitigate this access control flaw.
Runtime Rebel Intel
4 min read·Apr 6, 2026
VU
CRITICAL
Vulnerabilities
FortiClient EMS RCE via CVE-2026-35616 — Mitigation Guide
Fortinet releases emergency patches for CVE-2026-35616, a critical SQL injection flaw in FortiClient EMS exploited to achieve unauthenticated RCE.
Runtime Rebel Intel
4 min read·Apr 5, 2026
CRITICAL
Vulnerabilities
CVE-2026-35616: Critical FortiClient EMS API Bypass Exploited
Fortinet releases out-of-band patches for CVE-2026-35616, a critical API access bypass in FortiClient EMS enabling unauthenticated privilege escalation.
Runtime Rebel Intel
3 min read·Apr 5, 2026