Lucene search
K

6 matches found

GithubExploit
GithubExploit
added 2026/04/13 6:49 p.m.173 views

Exploit for Improper Access Control in Fortinet Forticlientems

CVE-2026-35616 - FortiClient EMS Pre-Authentication API Bypass...

9.8CVSS6.5AI score0.88505EPSS
Exploits8
BDU FSTEC
BDU FSTEC
added 2024/12/26 12:0 a.m.7 views

The vulnerability of the Fortinet FortiClient Enterprise Management Server (EMS) and the FortiClient EMS Cloud cloud storage service lies in the lack of data cleaning measures at the management level. This allows attackers to execute arbitrary code.

The vulnerability of the Fortinet FortiClient Enterprise Management Server EMS and the FortiClient EMS Cloud cloud storage service is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.5CVSS5.9AI score0.01287EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/12/26 12:0 a.m.7 views

The vulnerability of the Fortinet FortiClient Enterprise Management Server (EMS) server lies in the incorrect path limitation for the restricted access directory. This allows a malicious actor to perform service denial-of-service attacks, read from or write to a limited number of files.

The vulnerability of the Fortinet FortiClient Enterprise Management Server EMS server relates to incorrect restrictions on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor to perform maintenance actions, read from or write to a limited number of...

8CVSS5.5AI score0.00741EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/15 12:0 a.m.4 views

The vulnerability of the Fortinet FortiClient Enterprise Management Server (EMS) server lies in the lack of mechanisms to neutralize elements in CSV files. This allows a malicious actor to execute arbitrary codes or commands.

The vulnerability of the Fortinet FortiClient Enterprise Management Server EMS lies in the absence of mechanisms for neutralizing elements in CSV files. Exploiting this vulnerability allows a remote attacker to execute arbitrary codes or commands by sending specially crafted packets...

10CVSS8.1AI score0.01051EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/01/13 12:0 a.m.3 views

The vulnerability of the Fortinet FortiClient Enterprise Management Server (EMS) server, related to certificate validation errors, allows attackers to carry out “man-in-the-middle” attacks and expose the protected information.

The vulnerability of the Fortinet FortiClient Enterprise Management Server EMS server is related to authentication errors. Exploiting this vulnerability allows a malicious actor to carry out “man-in-the-middle” attacks and expose the protected information...

8.2CVSS7.2AI score0.00213EPSS
Exploits0References4Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/03/02 12:0 a.m.7 views

The vulnerability of the installation file FortiClientEMSOnlineInstaller.exe of the Fortinet FortiClient Enterprise Management Server (EMS) allows a perpetrator to execute arbitrary code.

The vulnerability of the installation file FortiClientEMSOnlineInstaller.exe of the Fortinet FortiClient Enterprise Management Server EMS server is related to errors in the path validation mechanism. Exploiting this vulnerability could allow an attacker to execute arbitrary code using specially...

7.8CVSS7.7AI score0.00599EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder