.webp)
Critical FortiClient EMS Vulnerability Allows Remote Malicious Code Execution
Mon Feb 09 2026
Patch Management
Vulnerability
cyberpress.org
A critical security flaw in Fortinet’s FortiClient EMS (Endpoint Management Server) puts organizations at high risk of remote code execution attacks. Tracked as CVE-2026-21643, this vulnerability was disclosed on February 6, 2026, earning a severe CVSS score of 9.1 out of 10. At its core, the issue is an SQL injection (SQLi) vulnerability in the […] The post Critical FortiClient EMS Vulnerability Allows Remote Malicious Code Execution appeared first on Cyber Security News.