H3-2026-0012¶
Fortinet FortiClient EMS Improper Access Control Vulnerability
| Category | VULNERABILITY |
| Base Score | 9.8 |
Description¶
Fortinet FortiClient EMS might contain an authentication bypass, due to improper access control. Current reports indicate that there might be a bypass to the patch for CVE-2026-35616, although it is currently unclear.
Impact¶
An unauthenticated remote attacker might execute unauthorized code or commands by sending crafted requests to the affected product.