31 May 2026
Reference: CVE-2026-35616
1. What is being reported?
The report reveals a critical vulnerability in Fortinet FortiClient EMS, a security management tool. The flaw allows attackers who are not logged in to bypass normal security checks and execute commands or code they shouldn’t be able to. This can happen through specially crafted requests sent to the software.
2. What this means in plain English
For a small organisation, this means that if you use FortiClient EMS versions 7.4.5 or 7.4.6, hackers could exploit this weakness to take control of your security system or steal sensitive data without needing a password. This could lead to data breaches or malware infections.
3. Could this affect a small business?
Small businesses that use Fortinet FortiClient EMS version 7.4.5 or 7.4.6 are at risk. If you do not use this software or use a different version, you are likely not affected. Check with your IT provider to confirm your software version and exposure.
4. What to do now
- Check if your organisation uses Fortinet FortiClient EMS and identify the version.
- Contact your IT provider or software supplier to confirm if you are affected by this vulnerability.
- Apply any security updates or patches provided by Fortinet as soon as they are available.
- Monitor your systems for unusual activity and ensure your security software is up to date.
5. Ask your IT provider
Can you confirm if our Fortinet FortiClient EMS software is version 7.4.5 or 7.4.6, and if so, have the necessary security patches been applied to protect against CVE-2026-35616?
6. Bottom line
If you use Fortinet FortiClient EMS versions 7.4.5 or 7.4.6, act quickly to update and protect your systems from this critical security flaw.
Information based on CISA KEV, NVD, and reputable security reporting.