CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Fortinet: >> Forticlientems >> 7.4.5 Security Vulnerabilities

CVE-2026-39809

A improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiClientEMS 7.4.0 through 7.4.5, FortiClientEMS 7.2.0 through 7.2.12, FortiClientEMS 7.0 all versions may allow attacker to execute unauthorized code or commands via sending crafted requests

CVSS Score

6.7

EPSS Score

0.0

Published

2026-04-14

CVE-2026-39810

A use of hard-coded cryptographic key vulnerability in Fortinet FortiClientEMS 7.4.0 through 7.4.5 may allow attacker to information disclosure via decrypting database dump.

CVSS Score

6.0

EPSS Score

0.0

Published

2026-04-14

CVE-2026-35616

Known exploited

A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests.

CVSS Score

9.8

EPSS Score

0.348

Published

2026-04-04

Page 1

Vulnerabilities

Vulnerable Software

Fortinet: >> Forticlientems >> 7.4.5 Security Vulnerabilities

Products

Pricing

Contact Us