Fortinet Releases Security Updates to Fix Critical Vulnerability in FortiClientEMS

Fortinet has published security updates to address a critical vulnerability affecting FortiClientEMS, which could allow the execution of arbitrary code on vulnerable systems. The vulnerability, listed under the number CVE-2026-21643, has a CVSS score of 9.1 out of 10.0. It is a SQL injection flaw (CWE-89) in FortiClientEMS.