Active Fortinet SQL Flaw Targets FortiClient EMS, CISA Warns

April 15, 2026 at 08:34 PM

•

1 min read

Active Fortinet SQL Flaw Targets FortiClient EMS, CISA Warns — Photo: CyberSecurityNews

TL;DR Summary

CISA added CVE-2026-21643, a critical unauthenticated SQL injection in Fortinet FortiClient EMS, to the Known Exploited Vulnerabilities (KEV) catalog, signaling active exploitation in the wild. The flaw enables remote code execution without authentication, risking full database compromise on affected FortiClient EMS deployments. Fortinet has released patches; federal agencies must patch by April 16, 2026, and private-sector admins are urged to patch within three days, monitor for unusual HTTP requests targeting EMS, and take the server offline if patching isn’t possible.

Topics:technology #cisa-kev #cve-2026-21643 #cyber-security-news #forticlient-ems #fortinet #sql-injection

Share this article

CISA Warns of Fortinet SQL Injection Vulnerability Actively Exploited in Attacks CyberSecurityNews
Ancient Excel bug comes out of retirement for active attacks theregister.com
CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software The Hacker News
Organizations Warned of Exploited Windows, Adobe Acrobat Vulnerabilities SecurityWeek
U.S. CISA adds Microsoft SharePoint Server, and Microsoft Office Excel flaws to its Known Exploited Vulnerabilities catalog Security Affairs

Reading Insights

Total Reads

Unique Readers

Time Saved

54 min

vs 54 min read

Condensed

99%

10,788 → 80 words

Want the full story? Read the original article

Read on CyberSecurityNews

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights