A critical FortiClient EMS flaw tied to CVE-2026-35616 turned trusted administration into a delivery path for a malicious patch and credential-stealing malware.
A management-server vulnerability tied to FortiClient EMS shows how one authorization failure can ripple across a fleet of protected devices without needing noisy endpoint exploits.