CVE-2026-59836 PUBLISHED

Assigner: fortinet
Reserved: 07.07.2026 Published: 14.07.2026 Updated: 14.07.2026

A improper certificate validation vulnerability in Fortinet FortiClientEMS 7.4.3 through 7.4.5, FortiClientEMS 7.4.0 through 7.4.1, FortiClientEMS 7.2 all versions may allow attacker to information disclosure via <insert attack vector here>

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
CVSS Score: 6.7

Product Status

Vendor Fortinet
Product FortiClientEMS
Versions Default: unaffected
  • affected from 7.4.3 to 7.4.5 (incl.)
  • affected from 7.4.0 to 7.4.1 (incl.)
  • affected from 7.2.12 to 7.2.14 (incl.)
  • affected from 7.2.0 to 7.2.10 (incl.)

Solutions

Upgrade to upcoming FortiClientEMS version 8.0.0 or above Upgrade to FortiClientEMS version 7.4.6 or above

References

Problem Types

  • Information disclosure CWE