The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies to secure FortiClient Enterprise Management Server (EMS) instances against an actively exploited vulnerability by Friday. [...]
CISA orders feds to patch Fortinet flaw exploited in attacks by Friday
CISA mandated that U.S. federal agencies patch a critical FortiClient Enterprise Management Server (EMS) vulnerability, tracked as CVE-2023-48788, which is actively exploited by attackers. The flaw allows remote code execution (RCE) and impacts federal networks running vulnerable EMS versions, posing severe risks of unauthorized access and data breaches.