On February 6, 2026, Fortinet released fixes for a critical vulnerability in FortiClientEMS, tracked as CVE-2026-21643.

ArcticWolf's platform is a central hub for cybersecurity professionals, offering insights into managed detection and response (MDR), threat intelligence, and security operations. Through articles, reports, and webinars, ArcticWolf offers insights into detecting and responding to cybersecurity threats effectively. Security analysts can learn about threat hunting, incident response strategies, and security best practices to protect organizations from cyberattacks.

Arctic Wolf

Fortinet released patches for CVE-2026-21643, a critical SQL injection vulnerability in FortiClientEMS 7.4.4 that allows unauthenticated remote attackers to execute unauthorized code through the web interface. The vulnerability has not been exploited in the wild yet, but threat actors may attempt to reverse engineer the patches given Fortinet's history as a target. Only version 7.4.4 is affected; upgrade to 7.4.5 is recommended, while versions 7.2 and 8.0 are unaffected.

CVE-2026-21643: Critical SQL Injection in FortiClientEMS