Lucene search
K

5 matches found

Cvelist
Cvelist
added 2026/04/04 12:38 a.m.54 views

CVE-2026-35616

A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests...

9.8CVSS0.88505EPSS
Exploits8References1
NVD
NVD
added 2026/01/13 5:15 p.m.4 views

CVE-2025-59922

An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability CWE-89 vulnerability in Fortinet FortiClientEMS 7.4.3 through 7.4.4, FortiClientEMS 7.4.0 through 7.4.1, FortiClientEMS 7.2.0 through 7.2.10, FortiClientEMS 7.0 all versions may allow an...

7.2CVSS0.06992EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/12 12:0 a.m.7 views

PT-2024-2114 · Fortinet · Forticlientems

Name of the Vulnerable Software and Affected Versions: Fortinet FortiClientEMS versions 6.0.0 through 6.0.8 Fortinet FortiClientEMS versions 6.2.0 through 6.2.9 Fortinet FortiClientEMS versions 6.4.0 through 6.4.9 Fortinet FortiClientEMS versions 7.0.0 through 7.0.10 Fortinet FortiClientEMS...

10CVSS7.9AI score0.01051EPSS
Exploits0References10
OSV
OSV
added 2021/12/16 7:15 p.m.6 views

CVE-2021-41028

A combination of a use of hard-coded cryptographic key vulnerability CWE-321 in FortiClientEMS 7.0.1 and below, 6.4.6 and below and an improper certificate validation vulnerability CWE-297 in FortiClientWindows, FortiClientLinux and FortiClientMac 7.0.1 and below, 6.4.6 and below may allow an...

7.5CVSS5.8AI score0.00213EPSS
Exploits0References1
OSV
OSV
added 2021/11/02 6:15 p.m.3 views

CVE-2020-15940

An improper neutralization of input vulnerability CWE-79 in FortiClientEMS versions 6.4.1 and below and 6.2.9 and below may allow a remote authenticated attacker to inject malicious script/tags via the name parameter of various sections of the server...

5.4CVSS6.1AI score0.00711EPSS
Exploits0References1
Rows per page
Query Builder