What is the current status of the security vulnerability in FortiClient EMS?

Fortinet has warned users that the security vulnerability in FortiClient Enterprise Management Server (EMS), reported 2 weeks ago, is currently being actively exploited. This vulnerability is a SQL Injection vulnerability that is particularly alarming due to its simplicity and potential for exploitation.

Attack

Fortinet warns users that FortiClientEMS flaw is actively exploited by hackers

Q: Which versions of FortiClient EMS are impacted by this vulnerability?

The vulnerability impacts specific versions of the FortiClient EMS, ranging from 7.2.0 to 7.2.2 and from 7.0.1 to 7.0.10.

published: March 22, 2024

Take action: Now it's urgent to patch your ForticlientEMS. With the PoC available, the attacks will be coming fast.

Learn More

Fortinet has issued a warning to users of its FortiClient Enterprise Management Server (EMS) that the security vulnerability reported 2 weeks ago that is currently being actively exploited.

The exploitation of this SQL Injection vulnerability is particularly alarming due to its simplicity, as demonstrated by a proof-of-concept released by Horizon3.ai, which shows how attackers can easily manipulate the system.

This vulnerability impacts specific versions of the FortiClient EMS, ranging from 7.2.0 to 7.2.2 and from 7.0.1 to 7.0.10. In light of the active exploitation of this vulnerability, Fortinet urges users, especially those utilizing affected SSL VPNs, to promptly install the available updates to safeguard their systems against potential attacks.

Fortinet warns users that FortiClientEMS flaw is actively exploited by hackers

Read More
Supply chain attack compromises Magento E-commerce extensions
Active exploitation of critically vulnerable WordPress Motors theme
NPM supply chain attack compromises 17 popular React …
ServiceNow flaws actively exploited by hackers
Critical Privilege Escalation in Modular DS WordPress Plugin …