Detections
Analytics
FortiClient EMS 7.4.x Reverse Proxy Header Spoofing Auth Bypass (CVE-2026-35616)
critical Nessus Plugin ID 305155
Version 1.2
Apr 8, 2026, 12:40 PM
- CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C")
- CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C")
- Exploit attributes ("Exploit available" set to "True")
- Exploit attributes ("Exploitability ease" set to "Exploits are available")
Plugin Feed: 202604081240