CVE-2026-21643: Critical FortiClient EMS Vulnerability Enables Unauthenticated Remote Code Execution

Fortinet released an advisory for CVE-2026-21643: a critical (CVSS 9.8) pre-auth SQL injection in FortiClient EMS 7.4.4 that can be exploited via crafted HTTP requests to potentially execute unauthorized commands or escalate to full system compromise; Fortinet fixed the issue in 7.4.5 and recommends patching, restricting access to the EMS web interface, and increasing monitoring while noting no evidence of active exploitation.