{"vulnerability": "CVE-2026-35616", "sightings": [{"uuid": "35a1851e-a3b3-49b3-99a8-c64e3a2043b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116343847582558534", "content": "", "creation_timestamp": "2026-04-04T01:30:29.940658Z"}, {"uuid": "01e28018-7551-4818-b05c-2eeea1b7c08a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3min3kkv3rq22", "content": "", "creation_timestamp": "2026-04-04T01:30:32.566223Z"}, {"uuid": "c5e801a9-5fec-4edb-83df-816822ac331a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3min62mxehv2m", "content": "", "creation_timestamp": "2026-04-04T02:15:18.215548Z"}, {"uuid": "9762fe73-f614-473e-b581-8da92ab06b13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3min63pcqrp2r", "content": "", "creation_timestamp": "2026-04-04T02:15:54.143542Z"}, {"uuid": "3c433a59-9fad-4ab0-a8b0-279a0ff87438", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3minadsg2st2d", "content": "", "creation_timestamp": "2026-04-04T02:56:13.069034Z"}, {"uuid": "144af871-eb29-4b78-88a8-936c48a0f451", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3minrthp2hi2r", "content": "", "creation_timestamp": "2026-04-04T08:09:12.286510Z"}, {"uuid": "3ebe4e33-6c63-48ca-a2d6-438d1cff6775", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3minyocx2sj2k", "content": "", "creation_timestamp": "2026-04-04T10:11:37.166192Z"}, {"uuid": "a1faeac2-dbf3-4951-ae85-0b931d136972", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3mionrepmsc2c", "content": "", "creation_timestamp": "2026-04-04T16:29:07.025280Z"}, {"uuid": "8e356a12-9996-4cde-8ccd-b5b6e73ed319", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3mip3cunqeb23", "content": "", "creation_timestamp": "2026-04-04T20:31:33.141989Z"}, {"uuid": "2e477e31-a7e8-41ba-bb61-469e5a2c72fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/cybersecurity.page/post/3mipfybztaw2l", "content": "", "creation_timestamp": "2026-04-04T23:42:28.896976Z"}, {"uuid": "82fd58b0-74b0-4404-b0c7-d85128de70dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mippczeb4d26", "content": "", "creation_timestamp": "2026-04-05T02:29:32.717664Z"}, {"uuid": "6b302320-1940-4738-b204-0ad67aa4e5e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mipxmcajv52r", "content": "", "creation_timestamp": "2026-04-05T04:57:54.013899Z"}, {"uuid": "b1d8b28a-0789-461c-a790-c1f8947b3109", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/cybersecurity0001.bsky.social/post/3miq3i2ygvz22", "content": "", "creation_timestamp": "2026-04-05T06:07:07.415726Z"}, {"uuid": "fe5df7bd-a34c-4c3f-ba8c-4159ee9e605d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://thehackernews.com/2026/04/fortinet-patches-actively-exploited-cve.html", "content": "", "creation_timestamp": "2026-04-05T02:32:00.000000Z"}, {"uuid": "a8449f67-4180-4fef-98aa-651036cb5037", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/Ywiq.mastodon.world.ap.brid.gy/post/3miqfc6r3vkq2", "content": "", "creation_timestamp": "2026-04-05T09:03:33.991633Z"}, {"uuid": "955f80dc-c5f9-4c8e-84d1-e079f4f0d91b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pvynckier.bsky.social/post/3miqggkgphk2v", "content": "", "creation_timestamp": "2026-04-05T09:23:11.270386Z"}, {"uuid": "6f549aac-c22c-4426-8d51-b88ebff7f3b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/116357416666996993", "content": "", "creation_timestamp": "2026-04-06T11:01:17.847697Z"}, {"uuid": "018f0bfc-7eae-43f6-9290-ffc8ebf16ab2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mit4h6x6qb2h", "content": "", "creation_timestamp": "2026-04-06T11:02:31.288707Z"}, {"uuid": "32c5640b-eb4b-4f77-85e7-b9576f8cbc7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mit5h6t3ea26", "content": "", "creation_timestamp": "2026-04-06T11:20:25.044403Z"}, {"uuid": "1c50c48d-37fe-43bf-85fe-ef16d9dc1712", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mit5imjoja2b", "content": "", "creation_timestamp": "2026-04-06T11:21:11.767789Z"}, {"uuid": "970aa4dc-6526-4c8d-b8bb-ccd4d39d926b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/solomonneas.dev/post/3mit7tezovt2t", "content": "", "creation_timestamp": "2026-04-06T12:03:00.818550Z"}, {"uuid": "1fbe8c12-81db-4f11-b4ca-00057da5bd77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/9c351bf2-5999-41a6-ad31-e5c3770cd041", "content": "", "creation_timestamp": "2026-04-06T15:39:05.547828Z"}, {"uuid": "8454b29a-a272-4bbb-869c-51522d47d590", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://www.acn.gov.it/portale/w/forticlient-ems-rilevato-sfruttamento-in-rete-della-cve-2026-35616", "content": "", "creation_timestamp": "2026-04-05T05:54:49.000000Z"}, {"uuid": "152f64fc-fc19-40c3-84a2-bd3a474aee17", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/1953e3a1-f872-4c28-ab9a-d0be510a988d", "content": "", "creation_timestamp": "2026-04-06T16:00:02.555752Z"}, {"uuid": "5697a294-8952-4e7d-ab34-a292fbe26948", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pigondrugs.bsky.social/post/3mitn5mlsor2q", "content": "", "creation_timestamp": "2026-04-06T16:01:23.364705Z"}, {"uuid": "951de0f8-1aae-43bf-81ca-616e6c614e3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://infosec.exchange/users/AAKL/statuses/116358617788492139", "content": "", "creation_timestamp": "2026-04-06T16:06:44.955729Z"}, {"uuid": "cd707242-013c-4ee7-8205-4e79d122da85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6190001", "content": "", "creation_timestamp": "2026-04-06T16:48:43.232759Z"}, {"uuid": "851471a9-7150-48bb-8cdc-1a72bc504cd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mitt2k2uns2r", "content": "", "creation_timestamp": "2026-04-06T17:47:01.958750Z"}, {"uuid": "cd41f122-677f-42ac-b2ab-4c40b7de76ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "published-proof-of-concept", "source": "https://t.me/codeby_sec/10030", "content": "\u041f\u0430\u0441\u0445\u0430\u043b\u044c\u043d\u0430\u044f \u0441\u0443\u0431\u0431\u043e\u0442\u0430, \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u0430\u044f \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430 \u0438 CVE \u0431\u0435\u0437 \u043f\u0430\u0442\u0447\u0430\n\n31 \u043c\u0430\u0440\u0442\u0430 2026 \u0433\u043e\u0434\u0430 \u0441\u0435\u043d\u0441\u043e\u0440\u044b watchTowr \u0437\u0430\u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u0430\u043a\u0442\u0438\u0432\u043d\u0443\u044e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0434\u043b\u044f \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u043d\u0435 \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043e\u0432\u0430\u043b\u043e \u043d\u0438 advisory, \u043d\u0438 \u043f\u0430\u0442\u0447\u0430. \u0427\u0435\u0442\u044b\u0440\u044c\u043c\u044f \u0434\u043d\u044f\u043c\u0438 \u043f\u043e\u0437\u0436\u0435, \u0432 \u043f\u0430\u0441\u0445\u0430\u043b\u044c\u043d\u0443\u044e \u0441\u0443\u0431\u0431\u043e\u0442\u0443, Fortinet \u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0430 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044c. \u041a \u0442\u043e\u043c\u0443 \u043c\u043e\u043c\u0435\u043d\u0442\u0443 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435 \u0443\u0436\u0435 \u0441\u0438\u0434\u0435\u043b\u0438 \u0432\u043d\u0443\u0442\u0440\u0438.\n\n\ud83c\udfaf \u041f\u043e\u0447\u0435\u043c\u0443 \u043f\u0440\u0430\u0437\u0434\u043d\u0438\u043a\u0438? SOC \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u0432 \u043f\u043e\u043b\u0441\u0438\u043b\u044b, \u0434\u0435\u0436\u0443\u0440\u043d\u044b\u0439 \u0441\u043c\u043e\u0442\u0440\u0438\u0442 \u0432 \u043f\u043e\u0442\u043e\u043b\u043e\u043a, \u0430 \u043e\u043a\u043d\u043e \u043c\u0435\u0436\u0434\u0443 \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0435\u0439 \u0438 \u0434\u0435\u0442\u0435\u043a\u0442\u043e\u043c \u0440\u0430\u0441\u0442\u044f\u0433\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u0441 \u0447\u0430\u0441\u043e\u0432 \u0434\u043e \u0434\u043d\u0435\u0439. CEO watchTowr \u0441\u043a\u0430\u0437\u0430\u043b \u043e\u0431 \u044d\u0442\u043e\u043c \u043f\u0440\u044f\u043c\u043e: \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435 \u0434\u0430\u0432\u043d\u043e \u043f\u043e\u043d\u044f\u043b\u0438, \u0447\u0442\u043e \u043f\u0440\u0430\u0437\u0434\u043d\u0438\u043a\u0438 \u2014 \u043b\u0443\u0447\u0448\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u0434\u043b\u044f \u0440\u0430\u0431\u043e\u0442\u044b.\n\nCVE-2026-35616 \u2014 pre-auth RCE \u0441 CVSS 9.8 \u0432 FortiClient EMS \u0432\u0435\u0440\u0441\u0438\u0439 7.4.5\u20137.4.6. \u041d\u0435 \u0430\u043a\u0430\u0434\u0435\u043c\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0441\u0442\u0440\u043e\u0447\u043a\u0430 \u0438\u0437 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044f, \u0430 \u0440\u0430\u0431\u043e\u0447\u0438\u0439 zero-day, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0441\u044f \u0434\u043e \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 \u043f\u0430\u0442\u0447\u0430.\n\n\ud83d\udd0d \u0427\u0442\u043e \u0442\u0430\u043a\u043e\u0435 FortiClient EMS \u0438 \u043f\u043e\u0447\u0435\u043c\u0443 \u044d\u0442\u043e \u0433\u043b\u0430\u0432\u043d\u0430\u044f \u0446\u0435\u043b\u044c?\n\nFortiClient EMS \u2014 \u043d\u0435 \u043f\u0440\u043e\u0441\u0442\u043e \u0441\u0435\u0440\u0432\u0435\u0440 \u043c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433\u0430. \u042d\u0442\u043e \u0446\u0435\u043d\u0442\u0440\u0430\u043b\u044c\u043d\u044b\u0439 management plane \u0432\u0441\u0435\u0439 endpoint-\u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b Fortinet. \u0427\u0435\u0440\u0435\u0437 \u043d\u0435\u0433\u043e \u043f\u0440\u043e\u0445\u043e\u0434\u0438\u0442 \u0432\u0441\u0451: VPN-\u043f\u043e\u043b\u0438\u0442\u0438\u043a\u0438, compliance-\u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438, \u0442\u0435\u043b\u0435\u043c\u0435\u0442\u0440\u0438\u044f \u0441 \u0430\u0433\u0435\u043d\u0442\u043e\u0432, \u0438\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u044f \u0441 FortiSandbox \u0438 FortiGate.\n\n\u041a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u044f EMS \u043d\u0430 red team \u2014 \u044d\u0442\u043e \u0434\u0436\u0435\u043a\u043f\u043e\u0442. \u0410\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0439 \u043f\u043e\u043b\u0443\u0447\u0430\u0435\u0442:\n\n\u2022 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0437\u0430\u0449\u0438\u0442\u043e\u0439 \u043d\u0430 \u0432\u0441\u0435\u0445 endpoint'\u0430\u0445\n\u2022 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0440\u0430\u0441\u043a\u0430\u0442\u044b\u0432\u0430\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u043f\u0430\u043a\u0435\u0442\u044b \u0447\u0435\u0440\u0435\u0437 \u043b\u0435\u0433\u0438\u0442\u0438\u043c\u043d\u044b\u0439 push-\u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\n\u2022 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0442\u0435\u043b\u0435\u043c\u0435\u0442\u0440\u0438\u0438 \u0441 VPN-\u0442\u043e\u043a\u0435\u043d\u0430\u043c\u0438\n\u2022 \u043c\u0430\u043d\u0438\u043f\u0443\u043b\u044f\u0446\u0438\u044e FortiSandbox-\u0438\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u0435\u0439\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Shadowserver, \u043e\u043a\u043e\u043b\u043e 2000 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 FortiClient EMS \u0442\u043e\u0440\u0447\u0430\u0442 \u0432 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442 \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u2014 \u0432\u043e\u043f\u0440\u0435\u043a\u0438 \u0432\u0441\u0435\u043c \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044f\u043c Fortinet. \u041d\u043e \u043a\u043e\u0433\u043e \u043a\u043e\u0433\u0434\u0430 \u043e\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u043b\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438.\n\n\u2699\ufe0f \u041f\u043e\u0447\u0435\u043c\u0443 \u0431\u0430\u0433 \u0432\u043e\u043e\u0431\u0449\u0435 \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442?\n\n\u0412\u0435\u043a\u0442\u043e\u0440 CVSS:3.1/AV:N/AC:L/PR:N/UI:N \u2014 \u044d\u0442\u043e \u0437\u043d\u0430\u0447\u0438\u0442: \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u0431\u0435\u0437 \u0441\u043b\u043e\u0436\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u0439, \u0431\u0435\u0437 \u0443\u0447\u0451\u0442\u043a\u0438, \u0431\u0435\u0437 \u043a\u0430\u043a\u0438\u0445-\u043b\u0438\u0431\u043e \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0439 \u0441\u043e \u0441\u0442\u043e\u0440\u043e\u043d\u044b \u0436\u0435\u0440\u0442\u0432\u044b. \u041e\u0434\u0438\u043d \u0437\u0430\u043f\u0440\u043e\u0441 \u2014 \u043e\u0434\u0438\u043d \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442.\n\n\u041a\u043e\u0440\u043d\u0435\u0432\u0430\u044f \u043f\u0440\u0438\u0447\u0438\u043d\u0430 \u2014 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435 auth-middleware \u043d\u0430 \u043a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u044b\u0445 API-\u044d\u043d\u0434\u043f\u043e\u0438\u043d\u0442\u0430\u0445. \u041c\u0435\u0445\u0430\u043d\u0438\u0437\u043c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043d\u0435 \u0432\u0437\u043b\u0430\u043c\u044b\u0432\u0430\u0435\u0442\u0441\u044f \u0438 \u043d\u0435 \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u0441\u044f \u0447\u0435\u0440\u0435\u0437 \u0438\u043d\u044a\u0435\u043a\u0446\u0438\u044e \u2014 \u043e\u043d \u043f\u0440\u043e\u0441\u0442\u043e \u043d\u0435 \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0435\u0442\u0441\u044f \u043a \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0451\u043d\u043d\u044b\u043c \u0437\u0430\u043f\u0440\u043e\u0441\u0430\u043c. \u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u0434\u043e\u0431\u0430\u0432\u0438\u043b\u0438 \u043d\u043e\u0432\u044b\u0439 route, \u0437\u0430\u0431\u044b\u043b\u0438 \u043d\u0430\u0432\u0435\u0441\u0438\u0442\u044c auth-\u0434\u0435\u043a\u043e\u0440\u0430\u0442\u043e\u0440 \u2014 \u043a\u043b\u0430\u0441\u0441\u0438\u043a\u0430 \u0436\u0430\u043d\u0440\u0430. \u0422\u0430\u043a\u043e\u0439 \u043f\u0430\u0442\u0442\u0435\u0440\u043d \u0432\u0441\u0442\u0440\u0435\u0447\u0430\u0435\u0442\u0441\u044f \u043f\u0440\u0438 \u0430\u0443\u0434\u0438\u0442\u0435 \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u044b\u0445 REST API \u0440\u0435\u0433\u0443\u043b\u044f\u0440\u043d\u043e.\n\n\u041e\u0442\u0434\u0435\u043b\u044c\u043d\u044b\u0439 \u043c\u043e\u043c\u0435\u043d\u0442: \u0432 \u0440\u0443\u0441\u0441\u043a\u043e\u044f\u0437\u044b\u0447\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0430\u0445 \u0433\u0443\u043b\u044f\u0435\u0442 \u043e\u0448\u0438\u0431\u043a\u0430 \u2014 \u044f\u043a\u043e\u0431\u044b \u0432\u0435\u0440\u0441\u0438\u044f 7.4.6 \u0437\u0430\u043a\u0440\u044b\u0432\u0430\u0435\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c. \u042d\u0442\u043e \u043d\u0435\u0432\u0435\u0440\u043d\u043e. \u041f\u043e NVD, \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u043e\u0431\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u2014 \u0438 7.4.5, \u0438 7.4.6. \u0418\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0442\u043e\u043b\u044c\u043a\u043e \u0447\u0435\u0440\u0435\u0437 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043e 7.4.7.\n\n\ud83d\udd17 \u041f\u0430\u0440\u0430\u043b\u043b\u0435\u043b\u044c\u043d\u044b\u0439 \u0432\u0435\u043a\u0442\u043e\u0440\n\nCVE-2026-35616 \u2014 \u043d\u0435 \u0438\u0437\u043e\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0441\u043b\u0443\u0447\u0430\u0439. CVE-2026-21643 \u2014 SQL-\u0438\u043d\u044a\u0435\u043a\u0446\u0438\u044f \u0432 \u0432\u0435\u0440\u0441\u0438\u0438 7.4.4 \u0441 \u0442\u0435\u043c \u0436\u0435 CVSS 9.8 \u0438 \u0438\u0434\u0435\u043d\u0442\u0438\u0447\u043d\u044b\u043c \u0432\u0435\u043a\u0442\u043e\u0440\u043e\u043c. \u0414\u0432\u0430 \u0440\u0430\u0437\u043d\u044b\u0445 \u043a\u043b\u0430\u0441\u0441\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u043e\u0434\u0438\u043d \u0438 \u0442\u043e\u0442 \u0436\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c, \u043e\u0434\u043d\u0430 \u0438 \u0442\u0430 \u0436\u0435 \u0446\u0435\u043b\u044c. FortiClient EMS \u044f\u0432\u043d\u043e \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u0431\u043e\u043b\u0435\u0435 \u0433\u043b\u0443\u0431\u043e\u043a\u043e\u0433\u043e security-\u0430\u0443\u0434\u0438\u0442\u0430.\n\n\u041f\u043e\u043b\u043d\u0430\u044f \u043c\u0435\u0445\u0430\u043d\u0438\u043a\u0430 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u2014 \u043e\u0442 \u0440\u0430\u0437\u0432\u0435\u0434\u043a\u0438 \u0438 API bypass \u0434\u043e lateral movement \u0447\u0435\u0440\u0435\u0437 Fortinet-\u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0443 \u2014 \u0432 \u0441\u0442\u0430\u0442\u044c\u0435 \u043d\u0430 \u0444\u043e\u0440\u0443\u043c\u0435.\n\nhttps://codeby.net/threads/cve-2026-35616-ekspluatatsiya-uyazvimosti-forticlient-ems-ot-api-bypass-do-zakhvata-fortinet-infrastruktury.92827/", "creation_timestamp": "2026-04-24T14:31:07.000000Z"}, {"uuid": "73d32ff5-f717-4eba-be51-30414c3398b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/allsafeus.bsky.social/post/3miqtc3zpib2q", "content": "", "creation_timestamp": "2026-04-05T13:13:16.868155Z"}, {"uuid": "7b1fe5a2-245a-42de-96fc-0ca388d44e59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/newsnexttech.bsky.social/post/3miqy3tifzt2w", "content": "", "creation_timestamp": "2026-04-05T14:39:14.736245Z"}, {"uuid": "0fc8ac2c-3b0b-4a40-b760-1d8e7dd3058f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/niztal.bsky.social/post/3miqydlvbhn2o", "content": "", "creation_timestamp": "2026-04-05T14:43:36.397046Z"}, {"uuid": "76cbd7c4-2a50-4cd3-bf0a-6d831564a239", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/shadowserver.bsky.social/post/3mirc36cjbk2p", "content": "", "creation_timestamp": "2026-04-05T17:37:53.556096Z"}, {"uuid": "9beae177-c063-4c0c-93cf-95e4b1137964", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/shadowserver.bsky.social/post/3mirc3b7gvs2p", "content": "", "creation_timestamp": "2026-04-05T17:37:55.310362Z"}, {"uuid": "273fde63-c22a-42cb-88d1-05a540ee6b0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/shadowserver.bsky.social/post/3mirc3b7iuc2p", "content": "", "creation_timestamp": "2026-04-05T17:37:55.861690Z"}, {"uuid": "c66f603a-92be-46e6-a39f-df8045790153", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://infosec.exchange/users/shadowserver/statuses/116353321530367043", "content": "", "creation_timestamp": "2026-04-05T17:39:51.484414Z"}, {"uuid": "2b366ac1-2146-4691-a867-f1ba1d7f8291", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mirdjl64pb2z", "content": "", "creation_timestamp": "2026-04-05T18:03:46.855833Z"}, {"uuid": "ea61b96e-3d7b-4242-be97-5afaf4440595", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mirhkwjnes2q", "content": "", "creation_timestamp": "2026-04-05T19:16:08.257415Z"}, {"uuid": "d708da47-d785-4150-aecb-957d7846051f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://bsky.app/profile/cyber-news-fi.bsky.social/post/3mirhorrzod2t", "content": "", "creation_timestamp": "2026-04-05T19:18:16.575488Z"}, {"uuid": "bdc3ccd6-6ce1-4f86-936e-97c68c871db3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/ninjaowl.ai/post/3mirkg77o2r2k", "content": "", "creation_timestamp": "2026-04-05T20:07:10.501966Z"}, {"uuid": "ddea201b-f389-455c-89de-f33f0cb524b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mirkga4ibl2n", "content": "", "creation_timestamp": "2026-04-05T20:07:11.393366Z"}, {"uuid": "95c00692-f255-4f58-95be-65ba4fa38d7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mirnk4hjfc2y", "content": "", "creation_timestamp": "2026-04-05T21:03:03.466962Z"}, {"uuid": "93ca12c4-40cf-411d-b495-67a7311b33dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mirxhclq3x2f", "content": "", "creation_timestamp": "2026-04-06T00:00:26.740030Z"}, {"uuid": "6a81e662-e282-4541-9978-b5b5085753d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/techpresso.bsky.social/post/3mirz6pizkm2b", "content": "", "creation_timestamp": "2026-04-06T00:31:24.820176Z"}, {"uuid": "d0b0e6cb-49ea-4923-b3cf-df93b0e085d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mis7rbgkhv2s", "content": "", "creation_timestamp": "2026-04-06T02:29:10.142301Z"}, {"uuid": "17b129f2-e815-4ead-bc44-18585da261a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3misbpu3ocr2s", "content": "", "creation_timestamp": "2026-04-06T03:04:09.961230Z"}, {"uuid": "cc9ae2c2-b3f9-4fd1-aed2-4e49a0f16856", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://fortiguard.fortinet.com/psirt/FG-IR-26-099", "content": "", "creation_timestamp": "2026-04-04T04:00:00.000000Z"}, {"uuid": "5cdb9a2d-6763-49d4-a573-4ed6dda237fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "patched", "source": "https://docs.fortinet.com/document/forticlient/7.4.5/ems-release-notes/832484", "content": "", "creation_timestamp": "2026-04-04T04:00:00.000000Z"}, {"uuid": "6813eb41-3f1d-4f02-891b-758c42c068c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "patched", "source": "https://docs.fortinet.com/document/forticlient/7.4.6/ems-release-notes/832484", "content": "", "creation_timestamp": "2026-04-04T04:00:00.000000Z"}, {"uuid": "190a5775-d8b8-4b97-ad1c-cd44f61fea5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mislqmwg7q2f", "content": "", "creation_timestamp": "2026-04-06T06:03:33.950424Z"}, {"uuid": "0b7361a8-10a3-4a4a-830b-3c3746a3f63e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3misqhfgl22di", "content": "", "creation_timestamp": "2026-04-06T07:27:52.712461Z"}, {"uuid": "404d29ff-3932-4bba-be6d-44574f501ba9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3misqj3uvwcdi", "content": "", "creation_timestamp": "2026-04-06T07:28:49.583131Z"}, {"uuid": "14615805-a578-497f-a0c6-4b01222a075b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3misqlutxfcdi", "content": "", "creation_timestamp": "2026-04-06T07:30:23.746091Z"}, {"uuid": "536a35e3-0a51-4ee2-aafc-9ef987f67169", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3misqu2bjn22q", "content": "", "creation_timestamp": "2026-04-06T07:34:57.560014Z"}, {"uuid": "c42f54b3-f02f-470a-8eac-24b0d2a6309f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mivmsbpck72q", "content": "", "creation_timestamp": "2026-04-07T11:00:22.027229Z"}, {"uuid": "3815a99a-5507-4d27-8b02-2a42e74ddef6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mitxyjqnpb2i", "content": "", "creation_timestamp": "2026-04-06T19:15:23.239279Z"}, {"uuid": "b2323fd0-560d-4b0e-bb1e-094f02ac16f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mityb2ckmn2f", "content": "", "creation_timestamp": "2026-04-06T19:20:09.014531Z"}, {"uuid": "d3e1df4a-046a-457d-bc39-1dae1f770448", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/intel.overresearched.net/post/3miu4etfazk2f", "content": "", "creation_timestamp": "2026-04-06T20:33:59.065700Z"}, {"uuid": "e0f46a56-4232-4ab3-b35b-e2c554db39ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/intel.overresearched.net/post/3miu4hps55c2f", "content": "", "creation_timestamp": "2026-04-06T20:35:27.960147Z"}, {"uuid": "65ff8fb5-f94b-4e24-9d8e-fca0af0936c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3miu4vt743m27", "content": "", "creation_timestamp": "2026-04-06T20:43:21.449323Z"}, {"uuid": "65ac4e71-236c-4aa7-b9bb-47a58b4aa34e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3miu5ypnzaj2z", "content": "", "creation_timestamp": "2026-04-06T21:03:03.883246Z"}, {"uuid": "42f69e8f-b344-4d6d-8948-62e57ac5d51d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://www.darkreading.com/vulnerabilities-threats/fortinet-emergency-patch-forticlient-zero-day", "content": "", "creation_timestamp": "2026-04-06T18:24:19.000000Z"}, {"uuid": "a6cd4f55-9b07-4d93-90d9-0065cadeebe6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3miuhuofmir26", "content": "", "creation_timestamp": "2026-04-06T23:59:33.536978Z"}, {"uuid": "35cbc2ff-bf28-4569-aa4d-ca825cf681cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3miui2xfnts2e", "content": "", "creation_timestamp": "2026-04-07T00:03:09.259268Z"}, {"uuid": "0b3f7753-9519-43b7-9ee5-8d6fba659e2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/rankednews.bsky.social/post/3miui62irx72f", "content": "", "creation_timestamp": "2026-04-07T00:04:49.959137Z"}, {"uuid": "f8c93c44-c455-47f5-aae8-99ebde27f0ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3miujosdxks2q", "content": "", "creation_timestamp": "2026-04-07T00:32:04.545287Z"}, {"uuid": "c9f6340c-daaf-4e39-bdd3-f60b1221aeb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3miukae62j42f", "content": "", "creation_timestamp": "2026-04-07T00:41:53.349321Z"}, {"uuid": "2a241bfc-53bc-442e-b52e-972e38d2c166", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3miszsf74pdb2", "content": "", "creation_timestamp": "2026-04-07T00:45:20.409470Z"}, {"uuid": "c309849f-02d2-4a64-901c-5aec69af0b83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mitky26qt4v2", "content": "", "creation_timestamp": "2026-04-07T00:45:53.596106Z"}, {"uuid": "6dbdef05-6347-4d01-85d9-dc8f46a50b02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mitky2n53lw2", "content": "", "creation_timestamp": "2026-04-07T00:45:54.120092Z"}, {"uuid": "71ec3aa1-d97a-4aaa-b5ba-16c7a7bdf151", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://bsky.app/profile/thenewoil.org/post/3mitorqhqgbj2", "content": "", "creation_timestamp": "2026-04-07T00:45:59.085996Z"}, {"uuid": "b76cc7b9-8f0d-4a07-a0a4-527ac69e72f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3miuq7wokg52m", "content": "", "creation_timestamp": "2026-04-07T02:29:02.694390Z"}, {"uuid": "6e294e74-b06a-4002-93f6-69f1f4b59fde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/it-connect.bsky.social/post/3miv42a3dkk2v", "content": "", "creation_timestamp": "2026-04-07T06:00:35.755157Z"}, {"uuid": "ed970b86-21ea-4abb-abe7-c20a4b8d68cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://infosec.exchange/users/patrickcmiller/statuses/116362059480150334", "content": "", "creation_timestamp": "2026-04-07T06:42:05.350787Z"}, {"uuid": "843ff817-3012-41d0-ad87-9dc205446682", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/80950", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-35616\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a Alaatk\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-04-19 10:06:27\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nFortinet FortiClientEMS improper access control\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-04-19T11:00:04.000000Z"}, {"uuid": "6d174348-f47b-4ffc-b340-8fd30f3c617d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://infosec.exchange/users/jbhall56/statuses/116363109526263842", "content": "", "creation_timestamp": "2026-04-07T11:09:04.304464Z"}, {"uuid": "f61bc213-2131-478f-a29e-51a7ed4b0013", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/jbhall56.bsky.social/post/3mivnc5n64c2w", "content": "", "creation_timestamp": "2026-04-07T11:09:15.710336Z"}, {"uuid": "734d18d2-fd0c-4cdf-9b62-d8cf15f19ff5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mivrtakokk2z", "content": "", "creation_timestamp": "2026-04-07T12:30:26.784873Z"}, {"uuid": "ba1c5937-4191-4531-a1d7-0f5fd0c52d67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pigondrugs.bsky.social/post/3mivrvl7qvt2t", "content": "", "creation_timestamp": "2026-04-07T12:31:49.264426Z"}, {"uuid": "eb9c0600-775f-46b7-bd61-eba41c518e59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3miwqe7jqwqo2", "content": "", "creation_timestamp": "2026-04-07T21:36:53.664294Z"}, {"uuid": "5ea58692-a4b7-4d64-bbdc-d973c6503369", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mixaoxbf5327", "content": "", "creation_timestamp": "2026-04-08T02:30:29.752832Z"}, {"uuid": "47925f53-5a35-43ce-9ac1-7c701a94cff7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://www.cisa.gov/news-events/alerts/2026/04/06/cisa-adds-one-known-exploited-vulnerability-catalog", "content": "", "creation_timestamp": "2026-04-06T05:00:00.000000Z"}, {"uuid": "70c9db86-4029-457d-b4f1-72b3e42408e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://dnsc.ro/citeste/alerta-vulnerabilitate-exploatata-activ-in-fortinet-forticlient-ems", "content": "", "creation_timestamp": "2026-04-06T05:09:11.000000Z"}, {"uuid": "9d414411-ec14-4593-bdcb-9ded04ee2259", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0400/", "content": "", "creation_timestamp": "2026-04-06T17:00:00.000000Z"}, {"uuid": "67a3359a-1578-4e64-8500-06313c629a8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://www.cert.se/2026/04/kritisk-sarbarhet-i-fortinet-forticlient-ems.html", "content": "", "creation_timestamp": "2026-04-07T03:45:00.000000Z"}, {"uuid": "2d1cb010-d18f-4c9f-9fe5-3081fc523094", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/fortinet-security-advisory-av26-313", "content": "", "creation_timestamp": "2026-04-07T05:02:51.000000Z"}, {"uuid": "66acf55d-746f-4de8-b5b9-a5b56fcb9bee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-critical-cve-2026-35616-actively-exploited-allowing-attackers-gain-unauthorized", "content": "", "creation_timestamp": "2026-04-07T08:09:19.000000Z"}, {"uuid": "b2101248-6b85-444e-be17-8ca849972b51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/al26-007-vulnerability-impacting-fortinet-forticlientems-cve-2026-35616", "content": "", "creation_timestamp": "2026-04-07T11:07:26.000000Z"}, {"uuid": "4f178eca-fb49-44ac-8736-70331970e152", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/fortinet-forticlientems-remote-code-execution-vulnerability_20260408", "content": "", "creation_timestamp": "2026-04-07T18:00:00.000000Z"}, {"uuid": "616ca918-192a-4456-8c8a-e2e2dca08807", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3mixrhd7scu2b", "content": "", "creation_timestamp": "2026-04-08T07:29:02.650956Z"}, {"uuid": "10ddf18f-cd96-4711-a412-cc0d5e2483b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "published-proof-of-concept", "source": "https://t.me/codeby_sec/10004", "content": "FortiClient EMS: \u043a\u043e\u0433\u0434\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u044e\u0449\u0438\u0439 \u0441\u0435\u0440\u0432\u0435\u0440 \u0441\u0430\u043c \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0435\u0442 \u0434\u0432\u0435\u0440\u044c\n\n\ud83d\udd34 4 \u0430\u043f\u0440\u0435\u043b\u044f Fortinet \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b advisory FG-IR-26-099 \u2014 \u0432 \u0441\u0443\u0431\u0431\u043e\u0442\u0443 \u043f\u0430\u0441\u0445\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0443\u0438\u043a\u0435\u043d\u0434\u0430. \u0410\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0435 \u0437\u0430\u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043d\u044b \u043d\u0430 honeypot-\u0441\u0435\u0442\u044f\u0445 \u0435\u0449\u0451 31 \u043c\u0430\u0440\u0442\u0430 \u2014 \u0437\u0430 \u0447\u0435\u0442\u044b\u0440\u0435 \u0434\u043d\u044f \u0434\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f.\n\nCVE-2026-35616 \u2014 \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u043d\u044b\u0439 \u0431\u0430\u0433: endpoint API \u0442\u043e\u0440\u0447\u0438\u0442 \u043d\u0430\u0440\u0443\u0436\u0443 \u0431\u0435\u0437 auth-middleware. CVSS 9.8, pre-auth, \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u0443\u0447\u0451\u0442\u043e\u043a, \u043d\u0438\u043a\u0430\u043a\u043e\u0433\u043e \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u0441 \u0436\u0435\u0440\u0442\u0432\u043e\u0439. \u041e\u0442\u043f\u0440\u0430\u0432\u0438\u043b \u0437\u0430\u043f\u0440\u043e\u0441 \u2014 \u043f\u043e\u043b\u0443\u0447\u0438\u043b \u043f\u0440\u0430\u0432\u0430 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 EMS.\n\nEMS \u2014 \u0446\u0435\u043d\u0442\u0440\u0430\u043b\u044c\u043d\u044b\u0439 \u0443\u0437\u0435\u043b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0432\u0441\u0435\u043c\u0438 FortiClient-\u0430\u0433\u0435\u043d\u0442\u0430\u043c\u0438. \u0417\u0430\u0445\u0432\u0430\u0442\u0438\u043b \u0435\u0433\u043e \u2014 \u043f\u043e\u043b\u0443\u0447\u0438\u043b:\n\u2022 \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435 \u0437\u0430\u0449\u0438\u0442\u044b \u043d\u0430 \u044d\u043d\u0434\u043f\u043e\u0438\u043d\u0442\u0430\u0445 (T1562.001)\n\u2022 \u0440\u0430\u0437\u0432\u0451\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u0435 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0445 \u043f\u0430\u043a\u0435\u0442\u043e\u0432 \u0447\u0435\u0440\u0435\u0437 \u043b\u0435\u0433\u0438\u0442\u0438\u043c\u043d\u044b\u0439 \u043a\u0430\u043d\u0430\u043b\n\u2022 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0442\u0435\u043b\u0435\u043c\u0435\u0442\u0440\u0438\u0438 \u0438 \u0443\u0447\u0451\u0442\u043d\u044b\u043c \u0434\u0430\u043d\u043d\u044b\u043c\n\nCISA \u0434\u0430\u043b\u0430 \u0444\u0435\u0434\u0435\u0440\u0430\u043b\u044c\u043d\u044b\u043c \u0430\u0433\u0435\u043d\u0442\u0441\u0442\u0432\u0430\u043c 3 \u0434\u043d\u044f \u043d\u0430 \u043f\u0430\u0442\u0447\u0438\u043d\u0433. ~2000 EMS-\u0438\u043d\u0441\u0442\u0430\u043d\u0441\u043e\u0432 \u0434\u043e \u0441\u0438\u0445 \u043f\u043e\u0440 \u0441\u043c\u043e\u0442\u0440\u044f\u0442 \u0432 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442.\n\nhttps://codeby.net/threads/cve-2026-35616-forticlient-ems-razbor-uyazvimosti-vektor-ataki-i-metody-obnaruzheniya.92711/", "creation_timestamp": "2026-04-20T12:19:48.000000Z"}, {"uuid": "0f1a8038-7d47-4590-979e-a1edd6c99d64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/concisecyber.bsky.social/post/3miy3fp26ne2p", "content": "", "creation_timestamp": "2026-04-08T10:27:04.866540Z"}, {"uuid": "643642d1-b6da-4c0b-bd84-2c68f7ac4f61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://www.ncsc.nl/alerts/kwetsbaarheid-in-forticlient-ems-van-fortinet", "content": "", "creation_timestamp": "2026-04-08T00:46:19.000000Z"}, {"uuid": "f54d8e59-c715-4b97-bffc-42a7cb7e7d8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mizr665myz26", "content": "", "creation_timestamp": "2026-04-09T02:29:14.545461Z"}, {"uuid": "2d7a1067-bd45-4f81-8c09-835e1dcff66e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-35616.yaml", "content": "", "creation_timestamp": "2026-04-09T07:50:00.000000Z"}, {"uuid": "3316b1c8-1aee-4f7d-926b-2cba18b2a5cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mj2yf3waln2o", "content": "", "creation_timestamp": "2026-04-09T14:11:03.309074Z"}, {"uuid": "a4302bfe-49c3-4724-8323-0aabb155733d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://bsky.app/profile/getpacketai.bsky.social/post/3mj3qwox2zo2h", "content": "", "creation_timestamp": "2026-04-09T21:30:22.968186Z"}, {"uuid": "242749f9-512d-48b4-b2a6-80e79f93469b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mj4bn3n3ux2s", "content": "", "creation_timestamp": "2026-04-10T02:29:14.680497Z"}, {"uuid": "7c79d9cf-f289-4599-8e7d-200a097edec8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mj7ugffhas2v", "content": "", "creation_timestamp": "2026-04-11T12:43:31.201272Z"}, {"uuid": "ded60d86-f084-415d-a9a6-37064768cbf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://www.cert.se/2026/04/cert-se-veckobrev-v15.html", "content": "", "creation_timestamp": "2026-04-10T06:30:00.000000Z"}, {"uuid": "ba2baf87-3bb0-454d-9e55-adf03011cfe5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjbcllv3sm2e", "content": "", "creation_timestamp": "2026-04-12T02:29:37.145308Z"}, {"uuid": "f9bbd3bc-a620-4e41-b783-268846557933", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/bishopfox.bsky.social/post/3mj65z5jhv22i", "content": "", "creation_timestamp": "2026-04-10T20:29:45.643692Z"}, {"uuid": "56b981ba-0528-432a-a894-abc912a6f6db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mj67ussmcn2l", "content": "", "creation_timestamp": "2026-04-10T21:03:16.379342Z"}, {"uuid": "5a45c6ec-c8b8-4b7b-9d39-158de6a93f52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mjc7upbtgc2r", "content": "", "creation_timestamp": "2026-04-12T11:13:42.501873Z"}, {"uuid": "73a52817-a31a-4289-a244-6428c2d66d9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mj6s2zxoat2b", "content": "", "creation_timestamp": "2026-04-11T02:28:41.917003Z"}, {"uuid": "53db2af9-64a9-4390-a09a-98cfa5b65ad5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mj7gqag3u22v", "content": "", "creation_timestamp": "2026-04-11T08:38:28.537710Z"}, {"uuid": "725492c8-13e8-40b4-a820-9f40996583dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mj7h3jepxs2v", "content": "", "creation_timestamp": "2026-04-11T08:44:52.213094Z"}, {"uuid": "ef9d105f-4f5d-488a-8b85-76297ef15a6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mj7i7fqiok2v", "content": "", "creation_timestamp": "2026-04-11T09:04:52.047211Z"}, {"uuid": "7da26c95-8d02-4bec-bc00-4428e28fd426", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mj7iurlofk2v", "content": "", "creation_timestamp": "2026-04-11T09:16:49.033303Z"}, {"uuid": "efe21a77-71b4-475f-b630-c2cedcc0d3d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mj7j6lyaus2v", "content": "", "creation_timestamp": "2026-04-11T09:22:19.552946Z"}, {"uuid": "a0208bff-5366-4af6-968a-ec1725c5f88d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mj7jrrdrwk2v", "content": "", "creation_timestamp": "2026-04-11T09:33:01.523856Z"}, {"uuid": "61cabad9-aac1-4443-9e3b-b4fb30f88a74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjdt2jxnih2t", "content": "", "creation_timestamp": "2026-04-13T02:29:38.027368Z"}, {"uuid": "0b7664b2-2374-4b5e-80bf-fbf26c6b19ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://infosec.exchange/users/greynoise/statuses/116409600709388032", "content": "", "creation_timestamp": "2026-04-15T16:12:22.859401Z"}, {"uuid": "e3b444d0-98f0-4514-92a8-d71b9df09707", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjgdjcg6pl25", "content": "", "creation_timestamp": "2026-04-14T02:29:32.520590Z"}, {"uuid": "3147173b-158e-4b34-b043-f32c80e87b51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mjgwi2sz3k2k", "content": "", "creation_timestamp": "2026-04-14T08:08:52.289845Z"}, {"uuid": "0fa6804d-f25b-4508-9702-acdf1dffdf46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/greynoise.infosec.exchange.ap.brid.gy/post/3mjkbxokelns2", "content": "", "creation_timestamp": "2026-04-15T16:12:30.708825Z"}, {"uuid": "b32d9fad-cb6e-411e-b838-f04f8687a760", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/greynoise.io/post/3mjkbxsxrx22y", "content": "", "creation_timestamp": "2026-04-15T16:12:31.962476Z"}, {"uuid": "8a07ef88-e730-4e96-8550-2daeffc11299", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/shadowserver.bsky.social/post/3mjwp526el22b", "content": "", "creation_timestamp": "2026-04-20T14:40:06.498815Z"}, {"uuid": "f66cd918-e57a-4d65-aea3-c0b6b4a670a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjxwrhgkau2x", "content": "", "creation_timestamp": "2026-04-21T02:29:23.069995Z"}, {"uuid": "be4af676-8715-44fb-8b42-7fcdaf0a3453", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://t.me/thehackernews/8739", "content": "\u26a0\ufe0f Fortinet is warning of active exploitation of CVE-2026-35616 (CVSS 9.1) in FortiClient EMS.\n\nThe flaw lets unauthenticated attackers bypass API controls and run code. This is the second critical EMS flaw exploited in weeks.\n\n\ud83d\udd17 Full details \u2192 https://thehackernews.com/2026/04/fortinet-patches-actively-exploited-cve.html", "creation_timestamp": "2026-04-05T04:38:14.000000Z"}, {"uuid": "89de36ac-2072-4922-8b73-7dc993a5bdbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://bsky.app/profile/niztal.bsky.social/post/3mjzxtwachc25", "content": "", "creation_timestamp": "2026-04-21T21:53:59.622578Z"}, {"uuid": "c6911845-fddb-4a07-b74b-6493ad9a6a77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://t.me/ctinow/248314", "content": "CVE-2026-35616: Fortinet fixes actively exploited high-severity flaw\nhttps://ift.tt/bQw5nSI", "creation_timestamp": "2026-04-06T05:54:36.000000Z"}, {"uuid": "097f13d2-f2b4-454d-8574-59f822e1ef89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://t.me/bdufstecru/3059", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0434\u043b\u044f \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0430\u043c\u0438 Fortinet FortiClient Enterprise Management Server (EMS) \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u0430 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u044b \u043f\u0443\u0442\u0435\u043c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432\n\nBDU:2026-04638\nCVE-2026-35616\nFG-IR-26-099\n\n\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0438\u0437 \u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432. \u0412 \u0441\u0432\u044f\u0437\u0438 \u0441\u043e \u0441\u043b\u043e\u0436\u0438\u0432\u0448\u0435\u0439\u0441\u044f \u043e\u0431\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u0438 \u0432\u0432\u0435\u0434\u0435\u043d\u043d\u044b\u043c\u0438 \u0441\u0430\u043d\u043a\u0446\u0438\u044f\u043c\u0438 \u043f\u0440\u043e\u0442\u0438\u0432 \u0420\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u043e\u0439 \u0424\u0435\u0434\u0435\u0440\u0430\u0446\u0438\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0441\u043b\u0435 \u043e\u0446\u0435\u043d\u043a\u0438 \u0432\u0441\u0435\u0445 \u0441\u043e\u043f\u0443\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0445 \u0440\u0438\u0441\u043a\u043e\u0432.\n\n\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u044d\u043a\u0440\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0443\u0440\u043e\u0432\u043d\u044f \u0432\u0435\u0431-\u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 (WAF) \u0434\u043b\u044f \u0444\u0438\u043b\u044c\u0442\u0440\u0430\u0446\u0438\u0438 \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u0442\u0440\u0430\u0444\u0438\u043a\u0430;\n- \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u043c\u0443 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c\u0443 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044e, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0441\u0445\u0435\u043c\u0443 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043f\u043e \u00ab\u0431\u0435\u043b\u044b\u043c \u0441\u043f\u0438\u0441\u043a\u0430\u043c\u00bb;\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0438 \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044f \u0432\u0442\u043e\u0440\u0436\u0435\u043d\u0438\u0439 \u0434\u043b\u044f \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f (\u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f, \u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0430\u0446\u0438\u0438) \u0438 \u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u043d\u0430 \u043f\u043e\u043f\u044b\u0442\u043a\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439;\n- \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0438\u0437 \u0432\u043d\u0435\u0448\u043d\u0438\u0445 \u0441\u0435\u0442\u0435\u0439 (\u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442).\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://fortiguard.fortinet.com/psirt/FG-IR-26-099", "creation_timestamp": "2026-04-06T14:28:19.000000Z"}, {"uuid": "76e87959-2c98-40bd-bae8-08706e5e7f61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://t.me/cKure/16272", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1\u25a1 \u26a0\ufe0f Fortinet is warning of active exploitation of CVE-2026-35616 (CVSS 9.1) in FortiClient EMS.\n\nThe flaw lets unauthenticated attackers bypass API controls and run code. This is the second critical EMS flaw exploited in weeks.\n\n\ud83d\udd17 Full details \u2192 https://thehackernews.com/2026/04/fortinet-patches-actively-exploited-cve.html", "creation_timestamp": "2026-04-06T10:14:21.000000Z"}, {"uuid": "f8560492-2fc3-4e50-a650-9b231b620091", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://t.me/true_secator/8068", "content": "Fortinet \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u044d\u043a\u0441\u0442\u0440\u0435\u043d\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0432 \u0432\u044b\u0445\u043e\u0434\u043d\u044b\u0435 \u0434\u043d\u0438 \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u043d\u043e\u0432\u043e\u0439 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u044f\u0442\u0438\u0435\u043c FortiClient (EMS), \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2026-35616 \u0438 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0443\u044e \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u0434 \u0438\u043b\u0438 \u043a\u043e\u043c\u0430\u043d\u0434\u044b \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432.\n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0431\u044b\u043b\u0430 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 \u0432 \u0441\u0443\u0431\u0431\u043e\u0442\u0443. \u041f\u0440\u0438 \u044d\u0442\u043e\u043c Fortinet \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430, \u0447\u0442\u043e \u043e\u043d\u0430 \u0431\u044b\u043b\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445, \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c \u043a\u043b\u0438\u0435\u043d\u0442\u0430\u043c \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 FortiClient EMS 7.4.5 \u0438 7.4.6 \u0438 \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 \u043f\u0443\u0442\u0435\u043c \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0438 \u043e\u0434\u043d\u043e\u0433\u043e \u0438\u0437 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439: \u0434\u043b\u044f FortiClientEMS 7.4.5 (\u0437\u0434\u0435\u0441\u044c) \u0438 \u0434\u043b\u044f FortiClientEMS 7.4.6 (\u0437\u0434\u0435\u0441\u044c). \u041e\u043d\u0430 \u0442\u0430\u043a\u0436\u0435 \u0431\u0443\u0434\u0435\u0442 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u0432 7.4.7. \u0412\u0435\u0440\u0441\u0438\u044f FortiClient EMS 7.2 \u043d\u0435 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u0430.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 Defused, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u044e\u0442 \u0435\u0435 \u043a\u0430\u043a \u043e\u0431\u0445\u043e\u0434 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a API \u0434\u043e \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0438\u0439 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u043e\u0431\u0445\u043e\u0434\u0438\u0442\u044c \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0438 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438.\n\n\u0412 Defused \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u043e\u00a0\u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0430, \u0447\u0442\u043e \u043d\u0430 \u044d\u0442\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435 \u043e\u043d\u0438 \u0443\u0436\u0435 \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u043b\u0438, \u043a\u0430\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 0-day, \u043f\u043e\u0441\u043b\u0435 \u0447\u0435\u0433\u043e \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u043e\u0431 \u044d\u0442\u043e\u043c \u0432 Fortinet \u0432 \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0438\u0438 \u0441 \u043f\u0440\u0438\u043d\u0446\u0438\u043f\u043e\u043c \u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0433\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Shadowserver\u00a0\u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 2000 \u043d\u0435\u0437\u0430\u0449\u0438\u0449\u0435\u043d\u043d\u044b\u0445 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 FortiClient EMS \u0432 \u0441\u0435\u0442\u0438, \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0440\u0430\u0441\u043f\u043e\u043b\u043e\u0436\u0435\u043d\u044b \u0432 \u0421\u0428\u0410 \u0438 \u0413\u0435\u0440\u043c\u0430\u043d\u0438\u0438.\n\n\u0414\u0430\u043d\u043d\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u0435\u043c \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u043e\u0439 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 FortiClient EMS\u00a0- CVE-2026-21643, \u043e \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0441\u043e\u043e\u0431\u0449\u0430\u043b\u043e\u0441\u044c \u043d\u0430 \u043f\u0440\u043e\u0448\u043b\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435 \u0438 \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0442\u0430\u043a\u0436\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445.\n\n\u041e\u0431\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b Defused, \u043f\u0440\u0438 \u044d\u0442\u043e\u043c \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Fortinet \u0442\u0430\u043a\u0436\u0435 \u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0430 \u0437\u0430\u0441\u043b\u0443\u0433\u0443 \u041d\u0433\u0443\u0435\u043d\u0430 \u0414\u044b\u043a \u0410\u043d\u044f \u0432 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0438 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\nFortinet \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442 \u043a\u043b\u0438\u0435\u043d\u0442\u0430\u043c \u043d\u0435\u043c\u0435\u0434\u043b\u0435\u043d\u043d\u043e \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0438\u043b\u0438 \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 7.4.7, \u043a\u043e\u0433\u0434\u0430 \u043e\u043d\u0430 \u0441\u0442\u0430\u043d\u0435\u0442 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u0430, \u0447\u0442\u043e\u0431\u044b \u0441\u043d\u0438\u0437\u0438\u0442\u044c \u0440\u0438\u0441\u043a \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0438.", "creation_timestamp": "2026-04-06T10:42:31.000000Z"}, {"uuid": "2dfa1011-813c-4d9f-8d51-714e522b1316", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://t.me/CyberSecurityIL/83439", "content": "\u05e9\u05d9\u05de\u05d5 \u05dc\u05d1 \u05dc\u05d7\u05d5\u05dc\u05e9\u05d4 \u05e7\u05e8\u05d9\u05d8\u05d9\u05ea \u05d1\u05de\u05d5\u05e6\u05e8 FortiClient EMS \u05d4\u05de\u05e0\u05d5\u05e6\u05dc\u05ea \u05d1\u05e4\u05d5\u05e2\u05dc \u05e2\u05dc \u05d9\u05d3\u05d9 \u05ea\u05d5\u05e7\u05e4\u05d9\u05dd \u05de\u05e1\u05d1\u05d9\u05d1 \u05dc\u05e2\u05d5\u05dc\u05dd.\n\n\u05d4\u05d7\u05d1\u05e8\u05d4 \u05e4\u05e8\u05e1\u05de\u05d4 \u05e2\u05d3\u05db\u05d5\u05df \u05d7\u05d9\u05e8\u05d5\u05dd.\n\u05d4\u05d7\u05d5\u05dc\u05e9\u05d4, CVE-2026-35616, \u05de\u05e9\u05e4\u05d9\u05e2\u05d4 \u05e2\u05dc \u05d2\u05e8\u05e1\u05d0\u05d5\u05ea:\nFortiClient EMS 7.4.5/6\n\nhttps://t.me/CyberSecurityIL/8724", "creation_timestamp": "2026-04-06T06:49:13.000000Z"}, {"uuid": "d5fbb39e-33d5-4b6c-866e-fd94a8a79bed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "published-proof-of-concept", "source": "Telegram/3yleRWtnDYZwCTBvYjIWLiNrnyEknyymyLLWQGDB2bHXdR4", "content": "", "creation_timestamp": "2026-04-06T19:00:12.000000Z"}, {"uuid": "6a3db000-5868-406f-8f0f-b9c71dfe8c34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://t.me/BleepingComputer/24395", "content": "\u200aNew FortiClient EMS flaw exploited in attacks, emergency patch released\n\nFortinet has released an emergency weekend security update for a new critical FortiClient Enterprise Management Server (EMS) vulnerability that is actively exploited in attacks. [...]\n\nhttps://www.bleepingcomputer.com/news/security/new-fortinet-forticlient-ems-flaw-cve-2026-35616-exploited-in-attacks/", "creation_timestamp": "2026-04-05T19:22:19.000000Z"}, {"uuid": "1329c9b5-5a33-4833-9d07-0e2c9b1efa07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "published-proof-of-concept", "source": "Telegram/dDdEoSzblUYmx6y4m1V61c7I55gbgbL59QVpXG1n0DWjbt8", "content": "", "creation_timestamp": "2026-04-04T03:15:52.000000Z"}, {"uuid": "b60314a2-30c0-4c56-97ef-c687c97b38ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "Telegram/jONbcXgX-B-tpEas-qVDcFm4Y90ApESEYBcDX9jy9VCTgQ", "content": "", "creation_timestamp": "2026-04-05T08:38:40.000000Z"}, {"uuid": "5b8b625c-0d3d-4c49-a545-4b6c2a8425ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "Telegram/5tmmMRx4s5UrjsBVc05fjDnHnjC0Yvifu7_jypKbm4yrN_a_", "content": "", "creation_timestamp": "2026-04-06T06:05:05.000000Z"}, {"uuid": "cc74d161-7b19-43f5-a6fe-8063440a5d28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "published-proof-of-concept", "source": "Telegram/jqsHB6FIdeMNMlYJLaE-SWbBIQ7X4SKPFQvaPULFC7d8_bM", "content": "", "creation_timestamp": "2026-04-14T15:00:07.000000Z"}, {"uuid": "339910ff-f433-4c88-ae91-01dd431a5b2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "published-proof-of-concept", "source": "Telegram/uic_eu60_4qpWHg6nRtttwpOPRlnEzPjnRfn6r5hc8j5w-A", "content": "", "creation_timestamp": "2026-04-04T21:00:04.000000Z"}, {"uuid": "9721a166-7486-417d-8a4c-a6e798a6bff0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "published-proof-of-concept", "source": "Telegram/A1qg1RolaBwsACBTI2hdl9LKX69FzxBc1xCrm7_xs4Pt8oY", "content": "", "creation_timestamp": "2026-04-06T21:00:05.000000Z"}, {"uuid": "243c3aa8-0bb1-4d1d-9d94-e2e4a06086b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://t.me/TengkorakCyberCrewzz/9491", "content": "Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS \u2013 thehackernews.com\n\nSun, 05 Apr 2026 12:32:00", "creation_timestamp": "2026-04-05T08:03:03.000000Z"}, {"uuid": "789c020a-1c99-4750-8b02-5a6eebd93946", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://t.me/cibsecurity/88977", "content": "\ud83d\udd8b\ufe0f Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS \ud83d\udd8b\ufe0f\n\nFortinet has released outofband patches for a critical security flaw impacting FortiClient EMS that it said has been exploited in the\u00a0wild. The\u00a0vulnerability, tracked\u00a0as CVE202635616 CVSS score 9.1, has been described as a preauthentication API access bypass leading to privilege escalation. \"An improper access control vulnerability CWE284 in FortiClient EMS may allow an.\n\n\ud83d\udcd6 Read more.\n\n\ud83d\udd17 Via \"The Hacker News\"\n\n----------\n\ud83d\udc41\ufe0f Seen on @cibsecurity", "creation_timestamp": "2026-04-05T05:45:10.000000Z"}, {"uuid": "b8a48a50-675a-4a1b-b854-aac62082e30a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://t.me/ctinow/248295", "content": "Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS\nhttps://ift.tt/Wzb3hgA", "creation_timestamp": "2026-04-05T05:44:36.000000Z"}, {"uuid": "773c151f-1c9e-4cf8-bd24-4c3058e748ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "https://t.me/TengkorakCyberCrewzz/39371", "content": "Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS \u2013 thehackernews.com\n\nSun, 05 Apr 2026 12:32:00", "creation_timestamp": "2026-04-05T08:03:03.000000Z"}, {"uuid": "80228e0c-5864-4cc5-9971-19f85f1584b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://t.me/GithubRedTeam/78730", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-35616\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a 0xBlackash\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a None\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-04-04 08:43:04\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-35616\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-04-04T09:00:03.000000Z"}, {"uuid": "c0e3e580-2cb9-4d0e-9f0d-e00f39fdee7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "published-proof-of-concept", "source": "Telegram/HT3M5qBEKW8k_WPn3-1S0A8sGyWZrHWLLjtXbIlw-iFvVyA", "content": "", "creation_timestamp": "2026-04-04T15:00:08.000000Z"}, {"uuid": "34f135af-e5a2-4bb5-aa9e-d16d15d9119c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/solomonneas.dev/post/3mkkk3by56p2k", "content": "", "creation_timestamp": "2026-04-28T12:02:49.106788Z"}, {"uuid": "0f44d6b3-d75f-47b4-a2ae-942f33481f0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "published-proof-of-concept", "source": "Telegram/3NeOQMVEOAurXwt23mnDOBlM3KjLtB42svivdE_fwEAs1Yc", "content": "", "creation_timestamp": "2026-04-19T15:00:06.000000Z"}, {"uuid": "cf29a7b2-7dc3-4da6-9391-be4d93b7597a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/intel.overresearched.net/post/3mlc7e4nbwk2t", "content": "CTI Daily 2026-05-06: PAN-OS CVE-2026-0300 exploited ITW by CL-STA-1132. FortiClient EMS CVE-2026-35616 exploit on Telegram. APT37 BirdCall Android via Sqgame. TCLBANKER + ManageWP AitM phishing.\n\nFull brief: intel.overresearched.net/2026/05/07/c...\n\n#Daily #ThreatIntel #InfoSec", "creation_timestamp": "2026-05-07T21:54:48.468311Z"}, {"uuid": "9a00e58e-b059-4aa5-aa22-f9ade46bfd36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/intel.overresearched.net/post/3mlc7foztik24", "content": "PAN-OS CVE-2026-0300 exploited ITW by CL-STA-1132. FortiClient EMS CVE-2026-35616 exploit on Telegram. APT37 BirdCall Android via Sqgame. TCLBANKER + ManageWP AitM phishing.\n\nFull brief: intel.overresearched.net/2026/05/07/c...\n\n#Daily #ThreatIntel #InfoSec", "creation_timestamp": "2026-05-07T21:55:40.946072Z"}, {"uuid": "55d42b08-9a05-4a99-a321-194ce375505d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://t.me/htfgtps/1094", "content": "A PoC/exploit has been discovered for vulnerability CVE-\n2026-35616\nPT ID: PT-2026-30288\nVendor: Fortinet\nProduct: FortiClientEMS\nDescription: A improper access control vulnerability in\nFortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an\nunauthenticated attacker to execute unauthorized code or\ncommands via crafted requests.\nLink: https://github.com/Alaatk/CVE-2026-35616", "creation_timestamp": "2026-05-09T14:49:21.000000Z"}, {"uuid": "f334882c-1518-4467-b0e3-d390ff95dc09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3mmv63zgjbr2g", "content": "The latest update for #ArcticWolf includes \"FortiClient EMS Exploited via CVE-2026-35616 to Deliver EKZ Infostealer Disguised as a Fortinet Patch\" and \"How AI Is Transforming Detection Engineering\".\n \n#cybersecurity #infosec #networks https://opsmtrs.com/2ZFbaTl", "creation_timestamp": "2026-05-28T04:18:09.082641Z"}, {"uuid": "9a61477e-e3c9-462d-b32f-02d4b9d0220a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mmucizawe62q", "content": "~Arcticwolf~\nCVE-2026-35616 is actively exploited to push EKZ Infostealer to managed endpoints via fake patches.\n-\nIOCs: 83. 138. 53. 110, 185. 220. 101. 15, 192. 42. 116. 14\n-\n#CVE202635616 #Malware #ThreatIntel", "creation_timestamp": "2026-05-27T20:04:20.543730Z"}, {"uuid": "d987e2f5-cd4b-467c-ac09-68070d87ffc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/116651857162928636", "content": "En las \u00faltimas 24 horas, m\u00faltiples vulnerabilidades cr\u00edticas han puesto en riesgo sistemas estatales, corporativos y plataformas populares como FortiClient EMS, Apache Ignite, Microsoft SharePoint y Gitea, adem\u00e1s del surgimiento de malware sofisticado en paquetes npm ligados a IA, evidenciando la urgencia de actualizar y reforzar la seguridad en todas las capas. Descubre estos y m\u00e1s detalles en el siguiente listado de noticias sobre seguridad inform\u00e1tica:\n\ud83d\uddde\ufe0f \u00daLTIMAS NOTICIAS EN SEGURIDAD INFORM\u00c1TICA \ud83d\udd12====| \ud83d\udd25 LO QUE DEBES SABER HOY \ufeff\ufeff28/05/26\ufeff\ufeff  \ud83d\udcc6 |==== \n\ud83d\udd13 HACKER RUMANO SENTENCIADO EN EE.UU. POR VENDER ACCESO A RED ESTATAL\nCatalin Dragomir se declar\u00f3 culpable de vender acceso a la red gubernamental del estado de Oreg\u00f3n, exponiendo informaci\u00f3n cr\u00edtica y riesgos significativos para la seguridad p\u00fablica. Este caso subraya la importancia de fortalecer la vigilancia interna y las medidas de protecci\u00f3n en infraestructuras estatales. Conoce m\u00e1s sobre esta sentencia y sus implicaciones en la seguridad nacional \ud83d\udc49 https://djar.co/iWAQ\n\u26a0\ufe0f PAQUETE NPM MALICIOSO ROB\u00d3 ARCHIVOS DE USUARIOS DE CLAUDE AI V\u00cdA GITHUB\nUn paquete npm descargado 676 veces conten\u00eda malware que extra\u00eda archivos del directorio de usuarios de Claude AI mediante cargas a GitHub, lo que intensifica la amenaza del malware impulsado por inteligencia artificial. Esta vulnerabilidad demuestra la necesidad de revisar y controlar estrictamente las dependencias en proyectos que utilizan inteligencia artificial. Descubre c\u00f3mo proteger tus proyectos contra esta amenaza \ud83d\udc49 https://djar.co/bLS9Hx\n\ud83d\udee1\ufe0f FORTICLIENT EMS EXPLOITADO CON CVE-2026-35616 PARA DISTRIBUIR INFOSTEALER\nUn grupo de atacantes ha explotado la vulnerabilidad CVE-2026-35616 en FortiClient EMS para distribuir un infostealer que se hace pasar por un parche oficial de Fortinet. Este ataque afecta a endpoints gestionados y pone en riesgo informaci\u00f3n sensible corporativa. Se recomienda aplicar parches y revisar la integridad de las actualizaciones. M\u00e1s detalles sobre el modus operandi y c\u00f3mo defenderse \ud83d\udc49 https://djar.co/EovoG\n\ud83d\udca5 VULNERABILIDAD CR\u00cdTICA EN APACHE IGNITE: EJECUCI\u00d3N REMOTA DE C\u00d3DIGO V\u00cdA DESERIALIZACI\u00d3N\nApache Ignite, una plataforma de computaci\u00f3n distribuida ampliamente utilizada, presenta una vulnerabilidad que permite ejecuci\u00f3n remota de c\u00f3digo aprovechando un exploit de deserializaci\u00f3n. Esto puede comprometer entornos productivos y servicios cr\u00edticos, enfatizando la importancia de aplicar actualizaciones de seguridad urgentes. Aprende c\u00f3mo identificar y mitigar esta falla \ud83d\udc49 https://djar.co/bb7eWd\n\ud83d\udea8 NUEVA FALTA DE SEGURIDAD RCE EN MICROSOFT SHAREPOINT: ACTUALIZA YA\nMicrosoft SharePoint sufre una vulnerabilidad cr\u00edtica (CVE-2026-45659) que posibilita ejecuci\u00f3n remota de c\u00f3digo con poco esfuerzo t\u00e9cnico, poniendo en riesgo datos y sistemas organizacionales. Si a\u00fan no has aplicado el parche, la recomendaci\u00f3n es actualizar de inmediato para evitar explotaci\u00f3n. Inf\u00f3rmate sobre c\u00f3mo proteger tu entorno SharePoint \ud83d\udc49 https://djar.co/L0Hag\n\ud83d\udd10 VULNERABILIDAD EN GITEA PERMITE ACCEDER A IM\u00c1GENES DE CONTENEDORES PRIVADAS SIN AUTENTICACI\u00d3N\nSe ha descubierto un fallo en Gitea que posibilita el acceso no autorizado a im\u00e1genes privadas de contenedores sin necesidad de autenticaci\u00f3n, lo que puede llevar a filtraci\u00f3n de datos sensibles y comprometer la cadena de suministro. Conoce las medidas para detectar y cerrar esta brecha \ud83d\udc49 https://djar.co/OwH0o", "creation_timestamp": "2026-05-28T11:01:24.477902Z"}, {"uuid": "3a073d99-1ab9-49d7-bd49-314a01080098", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mmw46kk2g223", "content": "CVE-2026-35616 in FortiClient EMS enables unauthenticated remote code execution, and attackers are exploiting it to deploy EKZ Infostealer via managed VPN scripting workflows.\n", "creation_timestamp": "2026-05-28T13:16:26.922437Z"}, {"uuid": "416bb39f-389e-4547-8e6a-80cd5add2020", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://t.me/true_secator/8253", "content": "\u041a\u0430\u043a \u043f\u0435\u0440\u0435\u0434\u0430\u0435\u0442 Arctic Wolf, \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 FortiClient Endpoint Management Server (EMS), \u043e\u0442\u043c\u0435\u0447\u0435\u043d\u043d\u0430\u044f \u043a\u0430\u043a 0-day \u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u0430\u044f \u0432 \u0430\u043f\u0440\u0435\u043b\u0435, \u0431\u044b\u043b\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0432 \u043d\u043e\u0432\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0441\u0442\u0438\u043b\u0435\u0440\u043e\u0432.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a\u00a0CVE-2026-35616\u00a0(CVSS 9.1) \u0438 \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u043d\u0430 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430 (RCE) \u0438 \u043d\u0435 \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n\u0412 \u043d\u0430\u0447\u0430\u043b\u0435 \u0430\u043f\u0440\u0435\u043b\u044f \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Fortinet \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u0432, \u0447\u0442\u043e \u043e\u043d\u0430 \u0431\u044b\u043b\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438 \u043a\u0430\u043a 0-day, \u0438 \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u043f\u0440\u0438\u0437\u0432\u0430\u0432 \u043a \u043d\u0435\u043c\u0435\u0434\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044e.\n\n\u0412 \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u043d\u0435\u0437\u0430\u0449\u0438\u0449\u0435\u043d\u043d\u044b\u0435 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f FortiClient EMS \u0432\u043d\u043e\u0432\u044c \u0441\u0442\u0430\u043d\u043e\u0432\u044f\u0442\u0441\u044f \u043e\u0431\u044a\u0435\u043a\u0442\u043e\u043c \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u043f\u043e \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u044e EKZ Infostealer, \u0437\u0430\u043c\u0430\u0441\u043a\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u043f\u043e\u0434 \u0444\u0435\u0439\u043a\u043e\u0432\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u043a\u043e\u043d\u0435\u0447\u043d\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 Fortinet.\n\n\u0412\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0430\u044f \u041f\u041e \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u043b\u0430\u0441\u044c \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u043c\u044b\u0445 FortiClient \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0435\u0432 VPN, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u044b\u0435 \u0441\u043a\u0440\u0438\u043f\u0442\u044b, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0432\u044b\u0437\u044b\u0432\u0430\u043b\u0438 PowerShell, \u0447\u0442\u043e \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442 \u043d\u0430 \u0437\u043d\u0430\u043d\u0438\u0435 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u043e\u0439 \u0441\u0440\u0435\u0434\u044b.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Arctic Wolf \u043f\u043e\u044f\u0441\u043d\u0438\u043b\u0438, \u0447\u0442\u043e \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u0435\u043c\u0430\u044f \u0441\u0445\u0435\u043c\u0430 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442 \u043d\u0430 \u0442\u043e, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438 \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0439 \u043f\u0443\u0442\u044c \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f FortiClient \u0434\u043b\u044f \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u043a\u043e\u043c\u0430\u043d\u0434 PowerShell \u043d\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u043c\u044b\u0435 \u043a\u043e\u043d\u0435\u0447\u043d\u044b\u0435 \u0442\u043e\u0447\u043a\u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u043e\u043c, \u0438\u043c\u0438\u0442\u0438\u0440\u0443\u044e\u0449\u0438\u043c \u043b\u0435\u0433\u0438\u0442\u0438\u043c\u043d\u044b\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f.\n\n\u041f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 FortiClient EMS \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u0443\u0435\u0442 \u043a\u0430\u043a \u0446\u0435\u043d\u0442\u0440\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u043c\u0438, \u043f\u043e\u043b\u0438\u0442\u0438\u043a\u0430\u043c\u0438 \u0438 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u044f\u043c\u0438 FortiClient, \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0443 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u043b \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043a\u043e\u0434 \u043d\u0430 \u043a\u0430\u0436\u0434\u043e\u0439 \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u043c\u043e\u0439 \u043a\u043e\u043d\u0435\u0447\u043d\u043e\u0439 \u0442\u043e\u0447\u043a\u0435.\n\n\u0412\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0435 \u041f\u041e, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0435 \u0432 \u044d\u0442\u0438\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u0434\u043b\u044f \u043a\u0440\u0430\u0436\u0438 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043e \u043d\u0430 Chrome, Microsoft Edge, Firefox \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u044b \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 Chromium \u0438 Gecko \u0441 \u0446\u0435\u043b\u044c\u044e \u043a\u0440\u0430\u0436\u0438 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u0444\u0430\u0439\u043b\u043e\u0432 cookie \u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0430\u0432\u0442\u043e\u0437\u0430\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f. \u0421\u043e\u0431\u0440\u0430\u043d\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u043f\u0435\u0440\u0435\u0434\u0430\u044e\u0442\u0441\u044f \u043f\u043e \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0443 HTTP.\n\n\u041f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u043d\u0435 \u043e\u0431\u043b\u0430\u0434\u0430\u0435\u0442 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044f\u043c\u0438 \u043a\u0440\u0430\u0436\u0438 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438\u0437 \u0441\u0435\u0442\u0438, \u0432\u043c\u0435\u0441\u0442\u043e \u044d\u0442\u043e\u0433\u043e \u043e\u043d\u043e \u044d\u043a\u0441\u043f\u043e\u0440\u0442\u0438\u0440\u0443\u0435\u0442 \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438\u0437 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u043c\u044b\u0445 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u043e\u0432 \u0432 \u0432\u044b\u0445\u043e\u0434\u043d\u043e\u0439 \u0444\u0430\u0439\u043b \u0436\u0443\u0440\u043d\u0430\u043b\u0430. \u041f\u0440\u0438 \u0437\u0430\u043f\u0443\u0441\u043a\u0435 \u0431\u0435\u0437 \u0430\u0440\u0433\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u043e\u043d\u043e \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u0443\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u043e\u0431 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0438 \u0438\u0437 \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u043e\u0439 \u0441\u0442\u0440\u043e\u043a\u0438.\n\n\u041e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u044f\u043c \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043a\u0430\u043a \u043c\u043e\u0436\u043d\u043e \u0441\u043a\u043e\u0440\u0435\u0435 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f Fortinet \u0434\u043b\u044f CVE-2026-35616, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0431\u044b\u043b\u0430 \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u0430 \u0432 \u0441\u043f\u0438\u0441\u043e\u043a \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 (KEV) CISA \u0435\u0449\u0435 6 \u0430\u043f\u0440\u0435\u043b\u044f.", "creation_timestamp": "2026-05-28T13:15:14.000000Z"}, {"uuid": "ecae7eef-0143-46d8-b9ba-ca226394e77d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmwhrkzw2y25", "content": "CVE-2026-35616: FortiClient EMS Flaw Actively Exploited in Malware Attacks", "creation_timestamp": "2026-05-28T16:43:55.793110Z"}, {"uuid": "3e2ef8bc-4463-458b-af41-f86e3ed6631e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://t.me/ctinow/250972", "content": "CVE-2026-35616: FortiClient EMS Flaw Actively Exploited in Malware Attacks\nhttps://ift.tt/tTkpN30", "creation_timestamp": "2026-05-28T16:19:13.000000Z"}, {"uuid": "1664539c-9ac9-4a17-8f33-f57805430160", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mmwjzuwg2j62", "content": "Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer TheHackerNews FortiClient EMS flaw CVE-2026-35616 enabled malware delivery via fake updates, risking credential thef...\n\n#Security #News\n\nOrigin | Interest | Match", "creation_timestamp": "2026-05-28T17:28:14.402055Z"}, {"uuid": "41025964-f8e2-4549-bd22-4875ad191743", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mmwkh7vkc32w", "content": "\u30cf\u30c3\u30ab\u30fc\u304cFortiClient EMS\u306e\u8106\u5f31\u6027\u3092\u60aa\u7528\u3057\u3001\u60c5\u5831\u7a83\u53d6\u30de\u30eb\u30a6\u30a7\u30a2\u3092\u914d\u5e03\n\n\u30cf\u30c3\u30ab\u30fc\u304cFortiClient Enterprise Management Server\uff08EMS\uff09\u306e\u8a8d\u8a3c\u30d0\u30a4\u30d1\u30b9\u8106\u5f31\u6027\uff08CVE-2026-35616\uff09\u3092\u60aa\u7528\u3057\u3001EKZ\u3068\u547c\u3070\u308c\u308b\u672a\u6587\u66f8\u5316\u306e\u8a8d\u8a3c\u60c5\u5831\u7a83\u53d6\u30c4\u30fc\u30eb\u3092\u914d\u5e03\u3057\u3066\u3044\u308b\u3053\u3068\u304c\u660e\u3089\u304b\u306b\u306a\u3063\u305f\u3002 \u653b\u6483\u8005\u306f\u30de\u30eb\u30a6\u30a7\u30a2\u3092Fortinet\u30a8\u30f3\u30c9\u30dd\u30a4\u30f3\u30c8\u5411\u3051\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u306b\u507d", "creation_timestamp": "2026-05-28T17:31:49.715238Z"}, {"uuid": "bddf11c3-9ec1-4328-9e20-8bc8b47e543c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "exploited", "source": "Telegram/QeJciflF2rSHcgV0HPGvTbW5NrRC4-TrZJ778oUZSUT4utrr", "content": "", "creation_timestamp": "2026-05-28T16:35:05.000000Z"}, {"uuid": "ba1df471-a719-4fcd-9599-6df1f2559fd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mmwm57otkz2y", "content": "FortiClient EMS\u306b\u8a8d\u8a3c\u30d0\u30a4\u30d1\u30b9\u8106\u5f31\u6027\uff08CVE-2026-35616\uff09\u304c\u3042\u308a\u3001\u653b\u6483\u8005\u306fEKZ\u3068\u3044\u3046\u60c5\u5831\u7a83\u53d6\u30de\u30eb\u30a6\u30a7\u30a2\u3092\u914d\u5e03\u53ef\u80fd\u3002", "creation_timestamp": "2026-05-28T18:02:02.018327Z"}, {"uuid": "35caa512-e4e4-4f5d-b6de-1d7b74ed3e53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/bleepingcomputer.com/post/3mmwk4vbwui2u", "content": "Hackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS) to deliver an undocumented credential stealer called EKZ.", "creation_timestamp": "2026-05-28T17:26:03.668698Z"}, {"uuid": "63dda767-36ca-4d9c-a93e-2bc917a0da5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mmwrgnw4yg62", "content": "CVE-2026-35616: FortiClient EMS Flaw Actively Exploited in Malware Attacks A critical FortiClient Endpoint Management Server (EMS) vulnerability patched in April has been exploited in fresh attacks...\n\n#Breaking #News #Hacking #Malware #Security #FortiClient #hacking #news #information #security [\u2026]", "creation_timestamp": "2026-05-28T19:36:52.209077Z"}, {"uuid": "b46e82e5-a26b-44d4-a0f4-960be66941a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://t.me/BleepingComputer/24770", "content": "\u200aHackers exploit FortiClient EMS flaw to push infostealer malware\n\nHackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS) to deliver an undocumented credential stealer called EKZ. [...]\n\nhttps://www.bleepingcomputer.com/news/security/hackers-exploit-forticlient-ems-flaw-to-push-infostealer-malware/", "creation_timestamp": "2026-05-28T18:02:42.000000Z"}, {"uuid": "51b9e956-f917-462c-961f-4a2aba511608", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mmwtlnyyfx2s", "content": "Hackers are exploiting CVE-2026-35616 in FortiClient EMS to push EKZ, a credential stealer, via abused VPN scripting workflows, unauthenticated API access, and malicious PowerShell, with data theft from endpoints. #FortiClientEMS #EKZ #Fortinet", "creation_timestamp": "2026-05-28T20:15:22.680752Z"}, {"uuid": "1d1a5d49-e593-4a37-beee-9ea22a1c2fc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/Firefox.activitypub.awakari.com.ap.brid.gy/post/3mmwxay5tsh42", "content": "FortiClient EMS Vulnerability CVE-2026-35616 Exploited in Active Campaign to Deliver Credential-Stealing Malware Disguised as a Legitimate Fortinet Patch Across Managed Endpoints. An actively explo...\n\n#TIGR #vulnerability\n\nOrigin | Interest | Match", "creation_timestamp": "2026-05-28T21:21:04.922884Z"}, {"uuid": "0c5e95be-bf49-4f67-9cee-985665d9345c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/crustytldr.bsky.social/post/3mmwzlel5ka2s", "content": "\ud83d\udd12 Hackers exploit FortiClient EMS flaw to push infostealer malware\n\nHackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Manageme...\n\nhttps://tinyurl.com/bd49j4an #CyberSecurity #InfoSec #CrustyTLDR", "creation_timestamp": "2026-05-28T22:02:45.733023Z"}, {"uuid": "687f5faf-0a0e-47a1-ad2e-a9a50a0bc154", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mmxikgplyz2a", "content": "Top 3 CVE for last 7 days:\nCVE-2026-69: 19 interactions\nCVE-2026-26980: 17 interactions\nCVE-2026-46333: 17 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-35616: 10 interactions\nCVE-2026-25592: 7 interactions\nCVE-2026-26030: 7 interactions\n", "creation_timestamp": "2026-05-29T02:30:29.821895Z"}, {"uuid": "f80466e7-6b94-494e-8546-296c815d5586", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/pvynckier.bsky.social/post/3mmxuucnmis24", "content": "CVE-2026-35616: FortiClient EMS Flaw Actively Exploited in Malware Attacks securityaffairs.com/192817/malwa...", "creation_timestamp": "2026-05-29T06:10:47.254799Z"}, {"uuid": "2e034b36-5239-4863-86a7-50eae0bfd055", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/deafnews-auto.bsky.social/post/3mmy5ipmfyv2f", "content": "CVE-2026-35616: Critical FortiClient EMS Flaw Potentially Exploited in Infostealer Campaign", "creation_timestamp": "2026-05-29T08:45:20.926097Z"}, {"uuid": "6ba75845-6d71-45fb-b55c-888d254a4e17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mmy6rsodt32o", "content": "\ud83d\udcf0 Eksploitasi Celah Keamanan FortiClient EMS: Peretas Kirim Malware \"EKZ Infostealer\" Berkedok Update Resmi\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/05/29/peretas-eksploitasi-celah-forticlient-ems-kirim-infostealer/\n\n#cisa #cve-2026-35616 #ekzMalware #forticlientEms #fortine", "creation_timestamp": "2026-05-29T09:08:19.634626Z"}, {"uuid": "ec0e10d9-1d30-477c-892e-6e039895d25e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/deafnews-auto.bsky.social/post/3mmxxy7ei4g2f", "content": "FortiClient EMS: CVE-2026-35616 and Potential EKZ Infostealer Activity", "creation_timestamp": "2026-05-29T07:06:38.283378Z"}, {"uuid": "018e34b9-96da-4e92-8b01-c91cc9246c74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mmyaftuhokz2", "content": "CVE-2026-35616: FortiClient EMS Flaw Actively Exploited in Malware Attacks Threat actors are exploiting a critical FortiClient EMS flaw, tracked as CVE-2026-35616, to deploy malware on unpatched sy...\n\n#Breaking #News #Hacking #Malware #Security #FortiClient #hacking #news #information #security [\u2026]", "creation_timestamp": "2026-05-29T09:37:32.133971Z"}, {"uuid": "2e1dabcf-0b20-4a25-bd34-eb0e06b40e19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://infosec.exchange/users/dragonjar/statuses/116657519621094477", "content": "En las \u00faltimas 24 horas, la ciberseguridad enfrenta avances clave con algoritmos post-cu\u00e1nticos para autentificaci\u00f3n segura, mientras se desarticula una banda que robaba datos personales; adem\u00e1s, vulnerabilidades cr\u00edticas en FreeBSD, FortiClient y Drupal alertan sobre riesgos de ejecuci\u00f3n remota; hackers rusos usan IA para ataques m\u00e1s sofisticados. Descubre estos y m\u00e1s detalles en el siguiente listado de noticias sobre seguridad inform\u00e1tica:\n\ud83d\uddde\ufe0f \u00daLTIMAS NOTICIAS EN SEGURIDAD INFORM\u00c1TICA \ud83d\udd12====| \ud83d\udd25 LO QUE DEBES SABER HOY \ufeff\ufeff29/05/26\ufeff\ufeff  \ud83d\udcc6 |==== \n\ud83d\udd12 INNOVACIONES EN ALGORITMOS POST-CU\u00c1NTICOS PARA AUTENTICACI\u00d3N Y FIRMA DIGITAL\nEl avance hacia la computaci\u00f3n post-cu\u00e1ntica es crucial para la seguridad futura. En la ronda 3 del NIST, se destacan nuevos algoritmos dise\u00f1ados para robustecer la autenticaci\u00f3n y la firma digital frente a amenazas cu\u00e1nticas, asegurando la integridad y confidencialidad en entornos digitales avanzados. Entiende c\u00f3mo estas innovaciones impactar\u00e1n en la ciberseguridad global. Descubre m\u00e1s sobre estos algoritmos post-cu\u00e1nticos aqu\u00ed \ud83d\udc49 https://djar.co/CFK6T\n\ud83d\udea8 DESARTICULAN BANDA DE HACKERS QUE ROBABA Y VEND\u00cdA DATOS PERSONALES SENSIBLES\nUna red criminal especializada acced\u00eda ilegalmente a bases de datos del Renaper, registros vehiculares, historias cl\u00ednicas y plataformas como Mi Argentina. Estos datos eran utilizados para realizar estafas y extorsiones, poniendo en riesgo la privacidad de miles de personas. La captura de esta banda resalta la importancia de fortalecer las medidas de seguridad en bases gubernamentales y privadas. Inf\u00f3rmate sobre este operativo crucial para la protecci\u00f3n de la informaci\u00f3n personal \ud83d\udc49 https://djar.co/jM9Vj\n\ud83d\udc1e 15 VULNERABILIDADES CR\u00cdTICAS EN EL KERNEL DE FREEBSD REVELADAS POR UN AUDITOR DE INTELIGENCIA ARTIFICIAL\nSe han identificado m\u00faltiples fallos en el n\u00facleo de FreeBSD, incluyendo vulnerabilidades que permiten ejecuci\u00f3n remota de c\u00f3digo, escalada de privilegios y fallos en el hipervisor bhyve. Estas brechas representan un riesgo significativo para sistemas que dependen de este sistema operativo, utilizado ampliamente en servidores y entornos de alto rendimiento. Conoce los detalles y las recomendaciones para mitigar estos riesgos. Lee el an\u00e1lisis completo aqu\u00ed \ud83d\udc49 https://djar.co/C6RI5y\n\ud83d\udc80 MALWARE DISTRIBUIDO A TRAV\u00c9S DE VULNERABILIDAD EN FORTICLIENT EMS\nHackers explotaron una vulnerabilidad cr\u00edtica (CVE-2026-35616) en FortiClient EMS para instalar malware dise\u00f1ado para el robo de credenciales y datos sensibles. Esta amenaza subraya la necesidad de mantener actualizados los sistemas de seguridad y aplicar parches de inmediato para evitar compromisos graves de la red. Descubre c\u00f3mo proteger tu infraestructura y evitar ser v\u00edctima. M\u00e1s informaci\u00f3n aqu\u00ed \ud83d\udc49 https://djar.co/MnsjU\n\u26a0\ufe0f INYECCI\u00d3N SQL EN DRUPAL POSTGRESQL PUEDE LLEVAR A EJECUCI\u00d3N REMOTA DE C\u00d3DIGO\nUna falla en Drupal que afecta a bases de datos PostgreSQL permite inyecci\u00f3n SQL que puede evolucionar a la ejecuci\u00f3n remota de comandos, especialmente cuando se explotan roles con privilegios elevados. Este riesgo pone en jaque la seguridad de sitios web y aplicaciones que utilizan esta plataforma. Aprende c\u00f3mo identificar y corregir esta vulnerabilidad cr\u00edtica para evitar ataques. Profundiza aqu\u00ed \ud83d\udc49 https://djar.co/loh4\n\ud83e\udd16 GRUPO GREYVIBE UTILIZA IA COMO CHATGPT Y GEMINI PARA POTENCIAR CIBERATAQUES\nEl grupo ruso GreyVibe ha comenzado a usar inteligencia artificial avanzada, como ChatGPT y Gemini, para dise\u00f1ar malware personalizado y realizar ataques dirigidos contra objetivos ucranianos. Esta tendencia marca un nuevo nivel en la sofisticaci\u00f3n de las amenazas cibern\u00e9ticas, integrando IA para mejorar la eficacia y el sigilo de los ataques. Descubre c\u00f3mo se est\u00e1 transformando el panorama de la ciberseguridad con estas tecnolog\u00edas. Inf\u00f3rmate aqu\u00ed \ud83d\udc49 https://djar.co/VVbVBH", "creation_timestamp": "2026-05-29T11:01:25.228249Z"}, {"uuid": "d6405e93-4bdc-4bd0-a3f6-3d99883d8ba6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mmyi2c37hi2t", "content": "\u65b0\u305f\u306a\u30a4\u30f3\u30d5\u30a9\u30b9\u30c6\u30a3\u30fc\u30e9\u30fc\u3001FortiClient EMS\u306e\u8106\u5f31\u6027\u3092\u60aa\u7528\u3057\u3066\u4f01\u696d\u30c7\u30d0\u30a4\u30b9\u306b\u5230\u9054\n\n\u653b\u6483\u8005\u305f\u3061\u306f\u3001FortiClient Enterprise Management Server\uff08EMS\uff09\u306e\u65e2\u77e5\u306e\u8106\u5f31\u6027\uff08CVE-2026-35616\uff09\u3092\u60aa\u7528\u3057\u3001\u5e83\u7bc4\u56f2\u306b\u5bfe\u5fdc\u3057\u305f\u30a4\u30f3\u30d5\u30a9\u30b9\u30c6\u30a3\u30fc\u30e9\u30fc\u3092\u4f01\u696d\u30b3\u30f3\u30d4\u30e5\u30fc\u30bf\u30fc\u306b\u9001\u308a\u8fbc\u3093\u3067\u3044\u308b\u3002 \u300c\u3053\u306e[\u60aa\u610f\u3042\u308b]\u30da\u30a4\u30ed\u30fc\u30c9\u306fFortinet\u306e\u30a8\u30f3\u30c9\u30dd\u30a4\u30f3\u30c8\u30a2\u30c3", "creation_timestamp": "2026-05-29T11:54:07.498118Z"}, {"uuid": "8228122f-e256-410b-b817-44929bc6c602", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/sec-news-bot.bsky.social/post/3mmyigwkzl32w", "content": "FortiClient EMS \u306e\u8a8d\u8a3c\u56de\u907f\u8106\u5f31\u6027\u3092\u60aa\u7528\u3001\u60c5\u5831\u76d7\u8074\u30de\u30eb\u30a6\u30a7\u30a2\u914d\u5e03\n\nFortiClient Enterprise Management Server (EMS) \u306e\u8a8d\u8a3c\u56de\u907f\u8106\u5f31\u6027 CVE-2026-35616 \u304c\u60aa\u7528\u3055\u308c\u3001EKZ \u3068\u3044\u3046\u8a8d\u8b58\u60c5\u5831\u76d7\u8074\u30de\u30eb\u30a6\u30a7\u30a2\u304c\u914d\u5e03\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u8a8d\u8a3c\u306a\u3057\u3067\u30b7\u30b9\u30c6\u30e0\u306b\u30a2\u30af\u30bb\u30b9\u53ef\u80fd\u306b\u306a\u308b\u305f\u3081\u3001\u65e9\u6025\u306a\u30d1\u30c3\u30c1\u9069\u7528\u304c\u5fc5\u9808\u3067\u3059\u3002\n\n#CVE #\u8106\u5f31\u6027 #\u30de\u30eb\u30a6\u30a7\u30a2", "creation_timestamp": "2026-05-29T12:01:12.380548Z"}, {"uuid": "fdd413c7-eb6a-4241-8258-e7a56774473e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mmyio36q3u2g", "content": "A campaign exploiting CVE-2026-35616 in FortiClient EMS has been identified, allowing unauthenticated access to deploy EKZ Infostealer malware. Attackers modified configurations to execute malicious scripts on managed endpoints, leading to credential theft from browsers.", "creation_timestamp": "2026-05-29T12:05:12.531853Z"}, {"uuid": "4eb30e37-5308-494b-9efb-cf12537651bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "MISP/f2f59cc2-23e6-4c3d-a76b-f29a7514cda8", "content": "", "creation_timestamp": "2026-05-28T13:59:18.000000Z"}, {"uuid": "1acf38fb-f95c-472b-91a7-0e0d345f115f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://infosec.exchange/users/jbhall56/statuses/116657860267303158", "content": "The activity, observed by the cybersecurity company in May 2026, involves the exploitation of CVE-2026-35616 (CVSS score: 9.1), a critical pre-authentication API access bypass leading to privilege escalation. https://thehackernews.com/2026/05/threat-actors-exploit-critical.html", "creation_timestamp": "2026-05-29T12:28:02.870321Z"}, {"uuid": "43714733-0286-4918-8186-73f12bf4465e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/jbhall56.bsky.social/post/3mmyjx6mpvc2m", "content": "The activity, observed by the cybersecurity company in May 2026, involves the exploitation of CVE-2026-35616 (CVSS score: 9.1), a critical pre-authentication API access bypass leading to privilege escalation. thehackernews.com/2026/05/thre...", "creation_timestamp": "2026-05-29T12:28:11.752477Z"}, {"uuid": "dd5402d5-2f95-4599-9a66-1e6e902bd036", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "MISP/dad9bfb2-3a67-4bbd-893d-941ea0bda65b", "content": "", "creation_timestamp": "2026-05-29T07:14:13.000000Z"}, {"uuid": "fa96742a-9ab0-4e19-b40d-25ac70d1212c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-35616", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116658691037013457", "content": "\ud83d\udcf0 Active Exploitation of Critical FortiClient EMS Flaw (CVE-2026-35616) Used to Deploy Credential Stealers\n\ud83d\udce2 ACTIVE EXPLOITATION: A critical FortiClient EMS flaw (CVE-2026-35616, CVSS 9.1) is being used to push credential stealers to all managed endpoints via PowerShell. Update to version 7.4.7 NOW. \ud83d\udee1\ufe0f #Fortinet #CyberAttack #PatchNow\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/forticlient-ems-flaw-cve-2026-35616-actively-exploited/?utm_source=m\u2026", "creation_timestamp": "2026-05-29T15:59:19.766680Z"}, {"uuid": "e802dbee-b986-43a4-aecf-0ea7732d93a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mmyvrs5fwv2o", "content": "\ud83d\udce2 ACTIVE EXPLOITATION: A critical FortiClient EMS flaw (CVE-2026-35616, CVSS 9.1) is being used to push credential stealers to all managed endpoints via PowerShell. Update to version 7.4.7 NOW. \ud83d\udee1\ufe0f #Fortinet #CyberAttack #PatchNow\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-05-29T15:59:55.061612Z"}, {"uuid": "6aca29da-acdf-4642-b4b0-eb1da6628f99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mmyzptssfk2g", "content": "CVE-2026-35616: FortiClient EMS Flaw Actively Exploited in Malware Attacks\n\nA critical FortiClient Endpoint Management Server (EMS) vulnerability patched in April has been exploited in fresh attacks to deploy information-stealing malware, Arctic Wolf reports. The flaw, tracked as\u00a0\u2026\n#hackernews #news", "creation_timestamp": "2026-05-29T17:10:24.915135Z"}, {"uuid": "aa1cab41-ff5f-4dd5-8180-ad58c8e6a291", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mmz6fdr53s2g", "content": "Hackers exploit FortiClient EMS flaw to push infostealer malware\n\nHackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS) to deliver an undocumented credential stealer called EKZ. [...]\n#hackernews #news", "creation_timestamp": "2026-05-29T18:34:01.264351Z"}]}