CVE-2023-48788: Critical Fortinet FortiClientEMS SQL Injection Vulnerability

On March 12, Fortinet published an advisory (FG-IR-24-007) to address a critical flaw in its FortiClient Enterprise Management Server (FortiClientEMS), a solution which enables centralized management of multiple endpoints.

CVE-2023-48788 is a critical SQL injection vulnerability affecting FortiClientEMS. This flaw could allow an unauthenticated attacker to execute arbitrary code on vulnerable FortiClientEMS software. A proposed release of a proof-of-concept next week coupled with historical exploitation of flaws in other Fortinet products means that remediation of this vulnerability requires urgent attention.

For more information about this vulnerability, including the availability of patches and Tenable

product coverage, please visit our blog.