AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

🔥 This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)

CVE-2026-35616: Fortinet FortiClient EMS Improper Access Control Vulnerability

infovulnerability🔥 Actively Exploited

security

Source: CISA Known Exploited VulnerabilitiesApril 5, 2026CVE-2026-35616

Summary

Fortinet FortiClient EMS has an improper access control vulnerability (a flaw in how the software checks who is allowed to do what) that lets unauthenticated attackers (people without login credentials) run unauthorized code or commands through specially crafted requests. This vulnerability is actively being exploited by attackers in real-world attacks.

Solution / Mitigation

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. Check for signs of potential compromise on all internet accessible Fortinet products affected by this vulnerability. Apply any final mitigations provided by the vendor as soon as they become available. For vendor-specific patches and remediation steps, see: https://fortiguard.fortinet.com/psirt/FG-IR-26-099

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.0%

Patch Available

Yes

Exploit Maturity

🔥 Actively Exploited

Disclosure Date

April 5, 2026

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-284

Monthly digest — independent AI security research

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-35616

First tracked: April 6, 2026 at 02:01 PM

Classified by LLM (prompt v3) · confidence: 95%