CVE-2026-59836

Summary

A improper certificate validation vulnerability in Fortinet FortiClientEMS 7.4.3 through 7.4.5, FortiClientEMS 7.4.0 through 7.4.1, FortiClientEMS 7.2 all versions may allow attacker to information disclosure via <insert attack vector here>

Affected Software

VendorProductVersion RangeStatus
FortinetFortiClientEMS7.4.3 <= 7.4.5affected
FortinetFortiClientEMS7.4.0 <= 7.4.1affected
FortinetFortiClientEMS7.2.12 <= 7.2.14affected
FortinetFortiClientEMS7.2.0 <= 7.2.10affected

Weaknesses

  • CWE-295: Information disclosure

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References