CVE-2026-21643

⚠ KEVEPSS 62.5%

Fortinet FortiClient EMS SQL Injection Vulnerability

Added to CISA KEV: 4/13/2026

Description

Fortinet FortiClient EMS contains a SQL injection vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP requests.

Affected packages (0)

No package mapping in OSV.