{"uuid": "03d02797-611e-49c6-99ea-ff410c1ecd6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35616", "type": "seen", "source": "https://bsky.app/profile/diesec.bsky.social/post/3mn7wggb7yg2n", "content": "CVE-2026-35616 (CVSS 9.1): FortiClient EMS pre-auth bypass = attacker pushes EKZ infostealer to ALL managed endpoints via PowerShell, disguised as a Fortinet update. MFA cookies stolen. Patch: EMS 7.4.7+. \nActive exploitation confirmed. \n\n#CyberSecurity #Fortinet #Infosec", "creation_timestamp": "2026-06-01T11:00:05.680003Z"}