Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution



February 10, 2026 at 10:08AM

Fortinet has released security updates to address a critical flaw impacting FortiClientEMS that could lead to the execution of arbitrary code on susceptible systems. The vulnerability, tracked as CVE-2026-21643, has a CVSS rating of 9.1 out of a maximum of 10.0. "An improper neutralization of special elements used in an SQL Command ('SQL Injection') vulnerability [CWE-89] in FortiClientEMS may

from The Hacker News https://ift.tt/QSRNv04

Genrerating Link.... 15 seconds.

Your Link is Ready.

Share this post