Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

Fortinet FortiClient EMS Improper Access Control Vulnerability Allowing Unauthorized Code Execution

Vulnerability

Exploited

Patched

A vulnerability allowing improper access control has been identified in Fortinet FortiClient EMS versions 7.4.5 through 7.4.6. This vulnerability may enable an unauthenticated attacker to execute unauthorized code or commands by sending crafted requests.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution on the affected system.

Remediation

Users are advised to upgrade to FortiClient EMS version 7.4.7 or above. For those currently using FortiClient EMS 7.4.5 or 7.4.6, a hotfix is available. Instructions for applying the hotfix can be found in the FortiClient EMS release notes for versions 7.4.5 and 7.4.6.

Added: Apr 4, 2026, 1:18 AM

Updated: Apr 6, 2026, 3:39 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

8.7

remediation

7.7

relevance

5.4

threat

8.9

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

8.7

remediation

7.7

relevance

5.4

threat

8.9

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

Fortinet FortiClient EMS Improper Access Control Vulnerability Allowing Unauthorized Code Execution

Vulnerability

Impact

Remediation

Affected Products

Fortinet FortiClientEMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating